QSearchQSearch

CVE-2016-9535

9.8 CRITICAL

tif_predict.h and tif_predict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows i...

Published: 2016-11-22 · Last updated: 2026-05-29

Severity and scoring

CVSS
9.8 CRITICAL
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE
CWE-119

Affected products

VendorProduct
libtifflibtiff

Description

tif_predict.h and tif_predict.c in libtiff 4.0.6 have assertions that can lead to assertion failures in debug mode, or buffer overflows in release mode, when dealing with unusual tile size like YCbCr with subsampling. Reported as MSVR 35105, aka "Predictor heap-buffer-overflow."

Source: NVD

References

Related CVEs

Same vendor

  • CVE-2026-4775 A flaw was found in the libtiff library (7.8 HIGH)
  • CVE-2023-52356 A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API (7.5 HIGH)

Same CWE

  • CVE-2026-12216 A weakness has been identified in svaarala duktape up to 2.99.99 (5.3 MEDIUM)
  • CVE-2026-12200 A security vulnerability has been detected in Ritlabs TinyWeb Server up to 1.94 on Win32 (7.3 HIGH)
  • CVE-2026-12193 A vulnerability was identified in VS Revo RevoUninstaller 2.5.x/2.6.x (7.8 HIGH)
  • CVE-2026-12192 A vulnerability was determined in GALAYOU Y4 1.0.0 (8.8 HIGH)
  • CVE-2026-12174 A security vulnerability has been detected in D-Link DCS-935L 1.10.01 (8.8 HIGH)