Blog

Security insights, vulnerability roundups, and updates from the Agent Breach team.

Security email updates

One digest email when we publish new security articles (TL;DR plus links to read more). Unsubscribe anytime from the message footer. See our Privacy Policy.

Critical GDAL LibTIFF Vulnerability Allows RCE via Malformed Images

Ubuntu security advisory USN-8345-1 addresses a memory handling flaw in GDAL's vendored LibTIFF library that could enable arbitrary code execution when processing malformed TIFF metadata. Organizations using GDAL for geospatial image processing should apply patches immediately to mitigate denial-of-service and data exfiltration risks.

Read more

Texmaker LibTIFF Flaw Enables Code Execution via Malformed Images

Ubuntu security update USN-8346-1 addresses critical vulnerabilities in Texmaker's bundled LibTIFF library that could allow attackers to execute arbitrary code through specially crafted TIFF files. The flaw affects memory handling during image metadata parsing, posing risks to users who process untrusted documents.

Read more

QT WebEngine LibTIFF Flaw Enables Code Execution via Malformed Images

Ubuntu security update USN-8347-1 addresses a critical vulnerability in QT WebEngine's vendored LibTIFF library that could allow attackers to execute arbitrary code through specially crafted TIFF image metadata. The flaw affects memory handling during image parsing and poses risks to applications embedding QT WebEngine.

Read more