Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-0800HistoryFeb 13, 2023 - 11:15 p.m.
CVE-2023-0800
2023-02-1323:15:12
Debian Security Bug Tracker
security-tracker.debian.org
9
6.8 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502, allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 33aee127.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tiff | < 4.5.0-5 | tiff_4.5.0-5_all.deb |
| Debian | 11 | all | tiff | < 4.2.0-1+deb11u4 | tiff_4.2.0-1+deb11u4_all.deb |
| Debian | 10 | all | tiff | < 4.1.0+git191117-2~deb10u7 | tiff_4.1.0+git191117-2~deb10u7_all.deb |
| Debian | 999 | all | tiff | < 4.5.0-5 | tiff_4.5.0-5_all.deb |
| Debian | 13 | all | tiff | < 4.5.0-5 | tiff_4.5.0-5_all.deb |
Related
alpinelinux
alpinelinux
CVE-2023-0800
2023-02-13 23:15:12
cbl_mariner
cbl_mariner
CVE-2023-0800 affecting package libtiff for versions less than 4.4.0-8
2023-03-09 00:24:42
CVE-2023-0800 affecting package libtiff 4.5.0-3
2023-03-02 04:18:33
cve
cve
CVE-2023-0800
2023-02-13 23:15:12
nvd
nvd
CVE-2023-0800
2023-02-13 23:15:12
osv
osv
CVE-2023-0800
2023-02-13 23:15:12
Moderate: libtiff security update
2023-10-05 21:33:47
Moderate: libtiff security update
2023-09-26 00:00:00
prion
prion
Out-of-bounds
2023-02-13 23:15:00
redhatcve
redhatcve
CVE-2023-0800
2023-02-15 19:59:15
veracode
veracode
Denial Of Service (DoS)
2023-02-21 10:45:51
nessus
nessus
CBL Mariner 2.0 Security Update: libtiff (CVE-2023-0800)
2023-03-20 00:00:00
Oracle Linux 8 : libtiff (ELSA-2023-5353)
2023-09-26 00:00:00
Amazon Linux AMI : libtiff (ALAS-2023-1829)
2023-09-25 00:00:00
cvelist
cvelist
CVE-2023-0800
2023-02-13 00:00:00
ubuntucve
ubuntucve
CVE-2023-0800
2023-02-13 00:00:00
redhat
redhat
(RHSA-2023:5353) Moderate: libtiff security update
2023-09-26 08:51:29
(RHSA-2023:3711) Moderate: libtiff security update
2023-06-21 13:52:06
(RHSA-2023:6137) Important: Migration Toolkit for Runtimes security update
2023-10-26 10:01:30
amazon
amazon
Medium: libtiff
2023-09-13 23:15:00
Medium: compat-libtiff3
2023-08-31 22:29:00
almalinux
almalinux
Moderate: libtiff security update
2023-09-26 00:00:00
Moderate: libtiff security update
2023-06-21 00:00:00
oraclelinux
oraclelinux
libtiff security update
2023-09-26 00:00:00
libtiff security update
2023-06-21 00:00:00
rocky
rocky
libtiff security update
2023-10-05 21:33:47
libtiff security update
2023-08-31 16:55:40
openvas
openvas
Debian: Security Advisory (DLA-3333-1)
2023-02-22 00:00:00
Ubuntu: Security Advisory (USN-5923-1)
2023-03-07 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2452)
2023-07-31 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerability
2023-03-02 00:14:31
cloudfoundry
cloudfoundry
USN-5923-1: LibTIFF vulnerabilities | Cloud Foundry
2023-03-23 00:00:00
debian
debian
[SECURITY] [DLA 3333-1] tiff security update
2023-02-21 22:59:32
[SECURITY] [DSA 5361-1] tiff security update
2023-02-24 08:12:43
ubuntu
ubuntu
LibTIFF vulnerabilities
2023-03-06 00:00:00
gentoo
gentoo
LibTIFF: Multiple Vulnerabilities
2023-05-30 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0605
2023-06-28 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0018
2023-06-06 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0417
2023-06-30 00:00:00
ibm
ibm
6.8 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
Related for DEBIANCVE:CVE-2023-0800