CVE-2024-7006

EUVD-2024-48424
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 67%
Affected Products (NVD)
VendorProductVersion
libtifflibtiff
3.5.1 ≤
𝑥
≤ 4.6.0
redhatenterprise_linux
8.0
redhatenterprise_linux
9.0
redhatenterprise_linux_for_arm_64
9.2
redhatenterprise_linux_for_power_little_endian_eus
9.2
redhatenterprise_linux_server_aus
9.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
tiff
bookworm
4.5.0-6+deb12u2
fixed
bookworm (security)
4.5.0-6+deb12u3
fixed
bullseye
vulnerable
bullseye (security)
4.2.0-1+deb11u7
fixed
forky
4.7.1-1
fixed
sid
4.7.1-1
fixed
trixie
4.7.0-3+deb13u1
fixed
trixie (security)
4.7.0-3+deb13u1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
tiff
bionic
Fixed 4.0.9-5ubuntu0.10+esm7
released
focal
Fixed 4.1.0+git191117-2ubuntu0.20.04.14
released
jammy
Fixed 4.3.0-6ubuntu0.10
released
noble
Fixed 4.5.1+git230720-4ubuntu2.2
released
oracular
Fixed 4.5.1+git230720-4ubuntu4
released
plucky
Fixed 4.5.1+git230720-4ubuntu4
released
questing
Fixed 4.5.1+git230720-4ubuntu4
released
trusty
Fixed 4.0.3-7ubuntu0.11+esm14
released
xenial
Fixed 4.0.6-1ubuntu0.8+esm17
released
qtwebengine-opensource-src
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
oracular
ignored
plucky
needs-triage
questing
needs-triage
texmaker
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
needs-triage
oracular
ignored
plucky
needs-triage
questing
needs-triage
xenial
needs-triage
gdal
bionic
not-affected
focal
not-affected
jammy
not-affected
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
trusty
needs-triage
xenial
needs-triage
neuron
bionic
needs-triage
focal
needs-triage
jammy
needs-triage
noble
not-affected
oracular
not-affected
plucky
not-affected
questing
not-affected
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libtiff-devel
suse enterprise desktop 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise desktop 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
4.6.0-150600.3.3.1
fixed
suse enterprise sap 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise sap 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise sap 15 SP7
4.6.0-150600.3.3.1
fixed
suse enterprise server 15 SP4
4.0.9-150000.45.47.1
fixed
suse enterprise server 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise server 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise server 15 SP7
4.6.0-150600.3.3.1
fixed
libtiff5
suse enterprise desktop 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise desktop 15 SP6
4.0.9-150000.45.47.1
fixed
suse enterprise desktop 15 SP7
4.0.9-150000.45.47.1
fixed
suse enterprise sap 12 SP5
4.0.9-44.86.1
fixed
suse enterprise sap 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise sap 15 SP6
4.0.9-150000.45.47.1
fixed
suse enterprise sap 15 SP7
4.0.9-150000.45.47.1
fixed
suse enterprise server 12 SP3
4.0.9-44.86.1
fixed
suse enterprise server 12 SP5
4.0.9-44.86.1
fixed
suse enterprise server 15 SP4
4.0.9-150000.45.47.1
fixed
suse enterprise server 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise server 15 SP6
4.0.9-150000.45.47.1
fixed
suse enterprise server 15 SP7
4.0.9-150000.45.47.1
fixed
libtiff5-32bit
suse enterprise desktop 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise desktop 15 SP6
4.0.9-150000.45.47.1
fixed
suse enterprise desktop 15 SP7
4.0.9-150000.45.47.1
fixed
suse enterprise sap 12 SP5
4.0.9-44.86.1
fixed
suse enterprise sap 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise sap 15 SP6
4.0.9-150000.45.47.1
fixed
suse enterprise sap 15 SP7
4.0.9-150000.45.47.1
fixed
suse enterprise server 12 SP3
4.0.9-44.86.1
fixed
suse enterprise server 12 SP5
4.0.9-44.86.1
fixed
suse enterprise server 15 SP4
4.0.9-150000.45.47.1
fixed
suse enterprise server 15 SP5
4.0.9-150000.45.47.1
fixed
suse enterprise server 15 SP6
4.0.9-150000.45.47.1
fixed
suse enterprise server 15 SP7
4.0.9-150000.45.47.1
fixed
libtiff6
suse enterprise desktop 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
4.6.0-150600.3.3.1
fixed
suse enterprise sap 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise sap 15 SP7
4.6.0-150600.3.3.1
fixed
suse enterprise server 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise server 15 SP7
4.6.0-150600.3.3.1
fixed
libtiff6-32bit
suse enterprise desktop 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise desktop 15 SP7
4.6.0-150600.3.3.1
fixed
suse enterprise sap 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise sap 15 SP7
4.6.0-150600.3.3.1
fixed
suse enterprise server 15 SP6
4.6.0-150600.3.3.1
fixed
suse enterprise server 15 SP7
4.6.0-150600.3.3.1
fixed
tiff
suse enterprise sap 12 SP5
4.0.9-44.86.1
fixed
suse enterprise server 12 SP3
4.0.9-44.86.1
fixed
suse enterprise server 12 SP5
4.0.9-44.86.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
libtiff
RHEL 8
0:4.0.9-33.el8_10
fixed
RHEL 9
0:4.4.0-12.el9_4.1
fixed
libtiff-devel
RHEL 8
0:4.0.9-33.el8_10
fixed
RHEL 9
0:4.4.0-12.el9_4.1
fixed
libtiff-tools
RHEL 8
0:4.0.9-33.el8_10
fixed
RHEL 9
0:4.4.0-12.el9_4.1
fixed
Common Weakness Enumeration
References
https://access.redhat.com/errata/RHSA-2024:6360
https://access.redhat.com/errata/RHSA-2024:8833
https://access.redhat.com/errata/RHSA-2024:8914
https://access.redhat.com/security/cve/CVE-2024-7006
https://bugzilla.redhat.com/show_bug.cgi?id=2302996
https://lists.debian.org/debian-lts-announce/2025/01/msg00019.html
https://security.netapp.com/advisory/ntap-20240920-0001/