CVE-2023-26965
14.06.2023, 21:15
loadImage() in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| libtiff | libtiff | 𝑥 ≤ 4.5.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libtiff-devel |
| ||||||||||||||||||||||||||||||||||||||||||
| libtiff5 |
| ||||||||||||||||||||||||||||||||||||||||||
| libtiff5-32bit |
| ||||||||||||||||||||||||||||||||||||||||||
| tiff |
|
Red Hat Enterprise Linux Releases
Amazon Linux Releases
Amazon Package | |||||
|---|---|---|---|---|---|
| libtiff |
| ||||
| libtiff-debuginfo |
| ||||
| libtiff-debugsource |
| ||||
| libtiff-devel |
| ||||
| libtiff-static |
| ||||
| libtiff-tools |
| ||||
| libtiff-tools-debuginfo |
|
Azure Linux Releases
Common Weakness Enumeration
References