libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop cause heap-buffer-overflow and SEGV.
Metrics
Affected Vendors & Products
| Vendors | Products |
|---|---|
| Libtiff |
|
| Redhat |
|
| Package | CPE | Advisory | Released Date |
|---|---|---|---|
| Red Hat Enterprise Linux 8 | |||
| libtiff-0:4.0.9-32.el8_10 | cpe:/a:redhat:enterprise_linux:8 | RHSA-2024:5079 | 2024-08-07T00:00:00Z |
References
History
Wed, 16 Jul 2025 13:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
epss
|
epss
|
Wed, 27 Nov 2024 15:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 07 Aug 2024 22:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Redhat
Redhat enterprise Linux |
|
| CPEs | cpe:/a:redhat:enterprise_linux:8 | |
| Vendors & Products |
Redhat
Redhat enterprise Linux |
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-06-29T00:00:00
Updated: 2024-11-27T14:30:45.902Z
Reserved: 2023-02-06T00:00:00
Link: CVE-2023-25433
Vulnrichment
Updated: 2024-08-02T11:18:36.338Z
NVD
Status : Modified
Published: 2023-06-29T20:15:09.830
Modified: 2024-11-21T07:49:30.260
Link: CVE-2023-25433
Redhat