FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2026-04-15 13:22:28 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
766bb9b5-357f-11f1-98f0-00a098b42aeb	(lib)tiff -- Integer Overflow or Wraparound PrymEvol and Quang Luong reports: A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution. Discovery 2026-03-24 Entry 2026-04-11 tiff < 4.7.1_1 CVE-2026-4775 https://cveawg.mitre.org/api/cve/CVE-2026-4775

VuXML ID

Description

766bb9b5-357f-11f1-98f0-00a098b42aeb

(lib)tiff -- Integer Overflow or Wraparound

PrymEvol and Quang Luong reports:

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution.

Discovery 2026-03-24
Entry 2026-04-11
tiff

< 4.7.1_1

CVE-2026-4775
https://cveawg.mitre.org/api/cve/CVE-2026-4775