Nixpkgs security tracker
Permalink
CVE-2023-52356
7.5 HIGH
- CVSS version (CVSS): 3.1
- Attack Vector (AV): Network (N)
- Attack Complexity (AC): Low (L)
- Privileges Required (PR): None (N)
- User Interaction (UI): None (N)
- Scope (S): Unchanged (U)
- Confidentiality (C): None (N)
- Integrity (I): None (N)
- Availability (A): High (H)
- Modified Attack Vector (MAV): Network (N)
- Modified Attack Complexity (MAC): Low (L)
- Modified Privileges Required (MPR): None (N)
- Modified User Interaction (MUI): None (N)
- Modified Confidentiality (MC): None (N)
- Modified Scope (MS): Unchanged (U)
- Modified Integrity (MI): None (N)
- Modified Availability (MA): High (H)
by @LeSuisse Activity log
- Created suggestion
- @LeSuisse dismissed
Libtiff: segment fault in libtiff in tiffreadrgbatileext() leading to denial of service
A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service.
References
-
-
-
https://gitlab.com/libtiff/libtiff/-/issues/622 x_transferred
-
https://gitlab.com/libtiff/libtiff/-/merge_requests/546 x_transferred
-
https://support.apple.com/kb/HT214119 x_transferred
-
https://support.apple.com/kb/HT214123 x_transferred
-
https://support.apple.com/kb/HT214122 x_transferred
-
https://support.apple.com/kb/HT214117 x_transferred
-
https://support.apple.com/kb/HT214118 x_transferred
-
https://support.apple.com/kb/HT214116 x_transferred
-
https://support.apple.com/kb/HT214120 x_transferred
-
https://support.apple.com/kb/HT214124 x_transferred
-
http://seclists.org/fulldisclosure/2024/Jul/16 x_transferred
-
http://seclists.org/fulldisclosure/2024/Jul/23 x_transferred
-
http://seclists.org/fulldisclosure/2024/Jul/21 x_transferred
-
http://seclists.org/fulldisclosure/2024/Jul/20 x_transferred
-
http://seclists.org/fulldisclosure/2024/Jul/17 x_transferred
-
http://seclists.org/fulldisclosure/2024/Jul/22 x_transferred
-
http://seclists.org/fulldisclosure/2024/Jul/18 x_transferred
-
http://seclists.org/fulldisclosure/2024/Jul/19 x_transferred
-
-
-
-
-
-
Affected products
iv
tkimg
libtiff
- <4.6.0
- *
mingw-libtiff
compat-libtiff3
rhaiis/vllm-cuda-rhel9
- *
rhaiis/vllm-rocm-rhel9
- *
rhaiis/model-opt-cuda-rhel9
- *
discovery/discovery-ui-rhel9
- *
Package maintainers
-
@willcohen Will Cohen
-
@nialov Nikolas Ovaskainen <nikolasovaskainen@gmail.com>
-
@sikmir Nikolay Korotkiy <sikmir@disroot.org>
-
@nh2 Niklas Hambüchen <mail@nh2.me>
-
@l0b0 Victor Engmark <victor@engmark.name>
-
@imincik Ivan Mincik <ivan.mincik@gmail.com>
-
@autra Augustin Trancart <augustin.trancart@gmail.com>