CVE-2023-3164

A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attackers to cause a denial of service via a crafted tiff file.
Classic Buffer Overflow
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
5.5 MEDIUM
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 23%
Affected Products (NVD)
VendorProductVersion
libtifflibtiff
𝑥
< 4.6.0
redhatenterprise_linux
7.0
redhatenterprise_linux
8.0
redhatenterprise_linux
9.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
tiff
bookworm
unimportant
bookworm (security)
unimportant
bullseye
unimportant
bullseye (security)
unimportant
sid
unimportant
trixie
unimportant
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
tiff
bionic
Fixed 4.0.9-5ubuntu0.10+esm6
released
focal
Fixed 4.1.0+git191117-2ubuntu0.20.04.13
released
jammy
Fixed 4.3.0-6ubuntu0.9
released
kinetic
ignored
lunar
ignored
mantic
Fixed 4.5.1+git230720-1ubuntu1.2
released
noble
Fixed 4.5.1+git230720-4ubuntu2.1
released
trusty
Fixed 4.0.3-7ubuntu0.11+esm13
released
xenial
Fixed 4.0.6-1ubuntu0.8+esm16
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libtiff-devel
suse enterprise desktop 15 SP5
4.0.9-150000.45.44.1
fixed
suse enterprise sap 15 SP5
4.0.9-150000.45.44.1
fixed
suse enterprise server 15 SP4
4.0.9-150000.45.44.1
fixed
suse enterprise server 15 SP5
4.0.9-150000.45.44.1
fixed
libtiff5
suse enterprise desktop 15 SP5
4.0.9-150000.45.44.1
fixed
suse enterprise desktop 15 SP6
4.0.9-150000.45.44.1
fixed
suse enterprise desktop 15 SP7
4.0.9-150000.45.44.1
fixed
suse enterprise sap 12 SP5
4.0.9-44.83.1
fixed
suse enterprise sap 15 SP5
4.0.9-150000.45.44.1
fixed
suse enterprise sap 15 SP6
4.0.9-150000.45.44.1
fixed
suse enterprise sap 15 SP7
4.0.9-150000.45.44.1
fixed
suse enterprise server 12 SP3
4.0.9-44.83.1
fixed
suse enterprise server 12 SP5
4.0.9-44.83.1
fixed
suse enterprise server 15 SP4
4.0.9-150000.45.44.1
fixed
suse enterprise server 15 SP5
4.0.9-150000.45.44.1
fixed
suse enterprise server 15 SP6
4.0.9-150000.45.44.1
fixed
suse enterprise server 15 SP7
4.0.9-150000.45.44.1
fixed
libtiff5-32bit
suse enterprise desktop 15 SP5
4.0.9-150000.45.44.1
fixed
suse enterprise desktop 15 SP6
4.0.9-150000.45.44.1
fixed
suse enterprise desktop 15 SP7
4.0.9-150000.45.44.1
fixed
suse enterprise sap 12 SP5
4.0.9-44.83.1
fixed
suse enterprise sap 15 SP5
4.0.9-150000.45.44.1
fixed
suse enterprise sap 15 SP6
4.0.9-150000.45.44.1
fixed
suse enterprise sap 15 SP7
4.0.9-150000.45.44.1
fixed
suse enterprise server 12 SP3
4.0.9-44.83.1
fixed
suse enterprise server 12 SP5
4.0.9-44.83.1
fixed
suse enterprise server 15 SP4
4.0.9-150000.45.44.1
fixed
suse enterprise server 15 SP5
4.0.9-150000.45.44.1
fixed
suse enterprise server 15 SP6
4.0.9-150000.45.44.1
fixed
suse enterprise server 15 SP7
4.0.9-150000.45.44.1
fixed
tiff
suse enterprise sap 12 SP5
4.0.9-44.83.1
fixed
suse enterprise server 12 SP3
4.0.9-44.83.1
fixed
suse enterprise server 12 SP5
4.0.9-44.83.1
fixed
Amazon Linux logo
Amazon Linux Releases
Amazon Package
Release
libtiff
Amazon Linux 2
0:4.0.3-35.amzn2.0.19
fixed
Amazon Linux 2023
0:4.4.0-4.amzn2023.0.23
fixed
libtiff-debuginfo
Amazon Linux 2
0:4.0.3-35.amzn2.0.19
fixed
Amazon Linux 2023
0:4.4.0-4.amzn2023.0.23
fixed
libtiff-debugsource
Amazon Linux 2023
0:4.4.0-4.amzn2023.0.23
fixed
libtiff-devel
Amazon Linux 2
0:4.0.3-35.amzn2.0.19
fixed
Amazon Linux 2023
0:4.4.0-4.amzn2023.0.23
fixed
libtiff-static
Amazon Linux 2
0:4.0.3-35.amzn2.0.19
fixed
Amazon Linux 2023
0:4.4.0-4.amzn2023.0.23
fixed
libtiff-tools
Amazon Linux 2
0:4.0.3-35.amzn2.0.19
fixed
Amazon Linux 2023
0:4.4.0-4.amzn2023.0.23
fixed
libtiff-tools-debuginfo
Amazon Linux 2023
0:4.4.0-4.amzn2023.0.23
fixed
Azure Linux logo
Azure Linux Releases
Azure Package
Release
libtiff
Azure Linux 3.0
0:4.6.0-5.azl3
fixed
CBL-Mariner 2.0
0:4.6.0-5.cm2
fixed