Stay Secure with the Latest Linux Advisories
Refine advisories
X Clear Filters
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Loading...
Explore Latest Linux Security advisories
We found -7 articles for you...
172
security advisorydenial of servicecriticalUbuntu 25.04: LibTIFF Critical DoS Issues USN-7783-1 CVE-2025-8961
Several security issues were fixed in LibTIFF.. ========================================================================== Ubuntu Security Notice USN-7783-1 September 29, 2025 tiff vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 25.04 - Ubuntu 24.04 LTS - Ubuntu 22.04 LTS - Ubuntu 20.04 LTS - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS - Ubuntu 14.04 LTS Summary: Several security issues were fixed in LibTIFF. Software Description: - tiff: Tag Image File Format (TIFF) library Details: Xudong Cao and Yuqing Zhang discovered that LibTIFF incorrectly handled memory when parsing malformed TIFF images. An attacker could possibly use this issue to cause LibTIFF to crash, resulting in a denial of service. (CVE-2025-8961) Xudong Cao and Yuqing Zhang discovered that LibTIFF incorrectly handled memory when parsing malformed TIFF image headers. An attacker could possibly use this issue to cause LibTIFF to leak memory, resulting in a denial of service. (CVE-2025-9165) It was discovered that LibTIFF incorrectly handled memory when parsing malformed TIFF image metadata. An attacker could possibly use this issue to cause a denial of service, obtain sensitive information, or execute arbitrary code. (CVE-2025-9900) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 25.04 libtiff6 4.5.1+git230720-4ubuntu4.2 Ubuntu 24.04 LTS libtiff6 4.5.1+git230720-4ubuntu2.4 Ubuntu 22.04 LTS libtiff5 4.3.0-6ubuntu0.12 Ubuntu 20.04 LTS libtiff5 4.1.0+git191117-2ubuntu0.20.04.14+esm2 Available with Ubuntu Pro Ubuntu 18.04 LTS libtiff5 4.0.9-5ubuntu0.10+esm9 Available with Ubuntu Pro Ubuntu 16.04 LTS libtiff5 4.0.6-1ubuntu0.8+esm19 Available with Ubuntu Pro Ubuntu 14.04 LTS libtiff5 4.0.3-7ubuntu0.11+esm16 Available with Ubuntu Pro In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-7783-1 CVE-2025-8961, CVE-2025-9165, CVE-2025-9900 Package Information: https://launchpad.net/ubuntu/+source/tiff/4.5.1+git230720-4ubuntu4.2 https://launchpad.net/ubuntu/+source/tiff/4.5.1+git230720-4ubuntu2.4 https://launchpad.net/ubuntu/+source/tiff/4.3.0-6ubuntu0.12 . Multiple issues fixed in LibTIFF affecting various Ubuntu releases pose risks including DoS and sensitive info leaks.. LibTIFF Security, Ubuntu Updates, TIFF Library Fixes. . Severity: Critical. LinuxSecurity.com Team
Sep 29, 2025
•Critical
Ubuntu
172
security advisorydenial of servicecritical threatUbuntu 12.10: 1631-2 Urgent: LibPNG Vulnerability Exploit
LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file.. =========================================================================Ubuntu Security Notice USN-1631-1 November 15, 2012 tiff vulnerabilities ========================================================================= A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 12.10 - Ubuntu 12.04 LTS - Ubuntu 11.10 - Ubuntu 10.04 LTS - Ubuntu 8.04 LTS Summary: LibTIFF could be made to crash or run programs as your login if it opened a specially crafted file. Software Description: - tiff: Tag Image File Format (TIFF) library Details: It was discovered that LibTIFF incorrectly handled certain malformed images using the PixarLog compression format. If a user or automated system were tricked into opening a specially crafted TIFF image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. (CVE-2012-4447) Huzaifa S. Sidhpurwala discovered that the ppm2tiff tool incorrectly handled certain malformed PPM images. If a user or automated system were tricked into opening a specially crafted PPM image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges. (CVE-2012-4564) Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 12.10: libtiff5 4.0.2-1ubuntu2.1 Ubuntu 12.04 LTS: libtiff4 3.9.5-2ubuntu1.3 Ubuntu 11.10: libtiff4 3.9.5-1ubuntu1.4 Ubuntu 10.04 LTS: libtiff4 3.9.2-2ubuntu0.11 Ubuntu 8.04 LTS: libtiff4 3.8.2-7ubuntu3.14 In general, a standard system update will make all the necessary changes. References: https://ubuntu.com/security/notices/USN-1631-1 CVE-2012-4447,CVE-2012-4564 Package Information: https://launchpad.net/ubuntu/+source/tiff/4.0.2-1ubuntu2.1 https://launchpad.net/ubuntu/+source/tiff/3.9.5-2ubuntu1.3 https://launchpad.net/ubuntu/+source/tiff/3.9.5-1ubuntu1.4 https://launchpad.net/ubuntu/+source/tiff/3.9.2-2ubuntu0.11 https://launchpad.net/ubuntu/+source/tiff/3.8.2-7ubuntu3.14 . A critical vulnerability concerning Ubuntu arises from LibTIFF's processing of corrupted images, potentially leading to system crashes or unauthorized code execution.. LibTIFF Issue, Ubuntu Update, TIFF Security Threats. . Severity: Critical. LinuxSecurity.com Team
Nov 15, 2012
•Critical
Ubuntu
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Community Poll
What got you started with Linux?
Search Topics
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!