This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-04-18 11:12:36 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68These are the vulnerabilities relating to the commit you have selected:
VuXML ID | Description |
---|---|
fb74eacc-ec8a-11e6-bc8a-0011d823eebd | tiff -- multiple vulnerabilities libtiff project reports:
Discovery 2016-11-19 Entry 2017-02-06 tiff < 4.0.7 linux-c6-libtiff linux-c6-tiff < 3.9.4_5 linux-c7-libtiff linux-c7-tiff < 4.0.3_3 http://simplesystems.org/libtiff/v4.0.7.html CVE-2016-9533 CVE-2016-9534 CVE-2016-9535 CVE-2015-8870 CVE-2016-5652 CVE-2016-9540 CVE-2016-9537 CVE-2016-9536 |
8f86d8b5-6025-11d9-a9e7-0001020eed82 | tiff -- tiffdump integer overflow vulnerability Dmitry V. Levin found a potential integer overflow in the tiffdump utility which could lead to execution of arbitrary code. This could be exploited by tricking an user into executing tiffdump on a specially crafted tiff image. Discovery 2005-01-06 Entry 2005-01-06 Modified 2005-03-01 tiff < 3.7.1_2 linux-tiff < 3.6.1_1 CVE-2004-1183 |
fc7e6a42-6012-11d9-a9e7-0001020eed82 | tiff -- directory entry count integer overflow vulnerability In an iDEFENSE Security Advisory infamous41md reports:
Discovery 2004-12-17 Entry 2005-01-06 Modified 2006-06-08 tiff < 3.7.1 linux-tiff < 3.6.1_1 pdflib pdflib-perl < 6.0.1_1 gdal < 1.2.1_2 ivtools < 1.2.3 paraview < 2.4.3 fractorama < 1.6.7_1 iv ja-iv ja-libimg gt 0 12075 CVE-2004-1308 http://www.idefense.com/application/poi/display?id=174&type=vulnerabilities 125598 |
313da7dc-763b-11df-bcce-0018f3e2eb82 | tiff -- buffer overflow vulnerability Kevin Finisterre reports:
Discovery 2010-04-15 Entry 2010-06-12 tiff < 3.9.3 linux-tiff < 3.9.3 CVE-2010-1411 http://www.remotesensing.org/libtiff/v3.9.3.html http://support.apple.com/kb/HT4196 |
2a96e498-3234-4950-a9ad-419bc84a839d | tiff -- multiple vulnerabilities NVD reports:
Discovery 2017-04-01 Entry 2017-04-20 tiff linux-f8-tiff linux-f10-tiff linux-c6-tiff linux-c7-tiff < 4.0.8 CVE-2017-5225 CVE-2017-7592 CVE-2017-7593 CVE-2017-7594 CVE-2017-7595 CVE-2017-7596 CVE-2017-7597 CVE-2017-7598 CVE-2017-7599 CVE-2017-7600 CVE-2017-7601 CVE-2017-7602 https://github.com/vadz/libtiff/commit/5c080298d59e https://github.com/vadz/libtiff/commit/48780b4fcc42 https://github.com/vadz/libtiff/commit/d60332057b95 https://github.com/vadz/libtiff/commit/2ea32f7372b6 https://github.com/vadz/libtiff/commit/8283e4d1b7e5 https://github.com/vadz/libtiff/commit/47f2fb61a3a6 https://github.com/vadz/libtiff/commit/3cfd62d77c2a https://github.com/vadz/libtiff/commit/3144e57770c1 https://github.com/vadz/libtiff/commit/0a76a8c765c7 https://github.com/vadz/libtiff/commit/66e7bd595209 |
f6680c03-0bd8-11d9-8a8a-000c41e2cdad | tiff -- RLE decoder heap overflows Chris Evans discovered several heap buffer overflows in libtiff's RLE decoder. These overflows could be triggered by a specially-crafted TIFF image file, resulting in an application crash and possibly arbitrary code execution. Discovery 2004-10-13 Entry 2004-10-13 Modified 2006-06-08 tiff le 3.6.1_1 linux-tiff < 3.6.1 pdflib pdflib-perl < 6.0.1 gdal < 1.2.1_2 ivtools < 1.2.3 paraview < 2.4.3 fractorama < 1.6.7_1 iv ja-iv ja-libimg gt 0 948752 CVE-2004-0803 http://scary.beasts.org/security/CESA-2004-006.txt |
3897a2f8-1d57-11d9-bc4a-000c41e2cdad | tiff -- multiple integer overflows Dmitry V. Levin discovered numerous integer overflow bugs in libtiff. Most of these bugs are related to memory management, and are believed to be exploitable for arbitrary code execution. Discovery 2004-10-13 Entry 2004-10-13 Modified 2006-06-08 tiff le 3.6.1_2 linux-tiff < 3.6.1 pdflib pdflib-perl < 6.0.1 gdal < 1.2.1_2 ivtools < 1.2.3 paraview < 2.4.3 fractorama < 1.6.7_1 iv ja-iv ja-libimg gt 0 687568 CVE-2004-0886 http://www.idefense.com/application/poi/display?id=173&type=vulnerabilities |
bd349f7a-b3b9-11e5-8255-5453ed2e2b49 | tiff -- out-of-bounds read in tif_getimage.c LMX of Qihoo 360 Codesafe Team discovered an out-of-bounds read in tif_getimage.c. An attacker could create a specially-crafted TIFF file that could cause libtiff to crash. Discovery 2015-12-24 Entry 2016-01-05 Modified 2016-09-06 tiff < 4.0.6_1 linux-c6-tiff < 3.9.4_2 linux-f10-tiff ge * CVE-2015-8665 http://www.openwall.com/lists/oss-security/2015/12/24/2 |
0ab66088-4aa5-11e6-a7bd-14dae9d210b8 | tiff -- buffer overflow Mathias Svensson reports:
Discovery 2016-06-28 Entry 2016-07-15 Modified 2016-09-06 tiff < 4.0.6_2 linux-c6-tiff < 3.9.4_2 linux-f10-tiff ge * https://github.com/vadz/libtiff/commit/391e77fcd217e78b2c51342ac3ddb7100ecacdd2 CVE-2016-5314 CVE-2016-5320 CVE-2016-5875 |
b38e8150-0535-11e8-96ab-0800271d4b9c | tiff -- multiple vulnerabilities Debian Security Advisory reports:
Discovery 2017-06-22 Entry 2018-01-29 tiff le 4.0.9 CVE-2017-9935 http://bugzilla.maptools.org/show_bug.cgi?id=2704 CVE-2017-18013 http://bugzilla.maptools.org/show_bug.cgi?id=2770 225544 |
b65e4914-b3bc-11e5-8255-5453ed2e2b49 | tiff -- out-of-bounds read in CIE Lab image format zzf of Alibaba discovered an out-of-bounds vulnerability in the code processing the LogLUV and CIE Lab image format files. An attacker could create a specially-crafted TIFF file that could cause libtiff to crash. Discovery 2015-12-25 Entry 2016-01-05 Modified 2016-09-06 tiff < 4.0.6_1 linux-c6-tiff < 3.9.4_2 linux-f10-tiff ge * CVE-2015-8683 http://www.openwall.com/lists/oss-security/2015/12/25/2 |
68222076-010b-11da-bc08-0001020eed82 | tiff -- buffer overflow vulnerability A Gentoo Linux Security Advisory reports:
Discovery 2005-05-10 Entry 2005-07-30 Modified 2006-06-08 tiff < 3.7.3 linux-tiff < 3.6.1_3 pdflib pdflib-perl < 6.0.1_2 gdal < 1.2.1_2 ivtools < 1.2.3 paraview < 2.4.3 fractorama < 1.6.7_1 iv ja-iv ja-libimg gt 0 CVE-2005-1544 http://bugzilla.remotesensing.org/show_bug.cgi?id=843 http://www.gentoo.org/security/en/glsa/glsa-200505-07.xml http://www.remotesensing.org/libtiff/v3.7.3.html |
8816bf3a-7929-11df-bcce-0018f3e2eb82 | tiff -- Multiple integer overflows Tielei Wang:
Discovery 2009-05-22 Entry 2010-06-16 tiff < 3.9.4 linux-tiff linux-f10-tiff < 3.9.4 CVE-2009-2347 http://www.remotesensing.org/libtiff/v3.9.4.html http://www.ocert.org/advisories/ocert-2009-012.html |