Lucene search

K
ubuntucveUbuntu.comUB:CVE-2023-1916
HistoryApr 10, 2023 - 12:00 a.m.

CVE-2023-1916

2023-04-1000:00:00
ubuntu.com
ubuntu.com
9
tiffcrop
out-of-bounds read
denial of service
limited disclosure
libtiff 4.x

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

EPSS

0.001

Percentile

18.8%

A flaw was found in tiffcrop, a program distributed by the libtiff package.
A specially crafted tiff file can lead to an out-of-bounds read in the
extractImageSection function in tools/tiffcrop.c, resulting in a denial of
service and limited information disclosure. This issue affects libtiff
versions 4.x.

Bugs

Notes

Author Note
mdeslaur low security impact as it is a denial of service in a command- line tool only, marking as low priority
ccdm94 As of 2023-08-22, the fix for this issue seems to have not been merged (https://gitlab.com/libtiff/libtiff/-/merge_requests/476).
mdeslaur There is a new merge request here: https://gitlab.com/libtiff/libtiff/-/merge_requests/535 Since the tiffcrop tool has been removed, the merge request will go nowhere, but can likely be used to fix previous releases.
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchtiff< 4.0.9-5ubuntu0.10+esm3UNKNOWN
ubuntu20.04noarchtiff< 4.1.0+git191117-2ubuntu0.20.04.10UNKNOWN
ubuntu22.04noarchtiff< 4.3.0-6ubuntu0.6UNKNOWN
ubuntu23.04noarchtiff< 4.5.0-5ubuntu1.2UNKNOWN
ubuntu24.04noarchtiff< 4.5.1+git230720-4ubuntu1UNKNOWN
ubuntu14.04noarchtiff< 4.0.3-7ubuntu0.11+esm10UNKNOWN
ubuntu16.04noarchtiff< 4.0.6-1ubuntu0.8+esm13UNKNOWN

CVSS3

6.1

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

EPSS

0.001

Percentile

18.8%