Lucene search
Veracode Vulnerability DatabaseVERACODE:39351HistoryFeb 20, 2023 - 2:45 a.m.
Denial Of Service (DoS)
2023-02-2002:45:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
denial of service
libtiff.so
tiffcrop.c
out-of-bounds read
application crash
tiff file
vulnerability
0.0004 Low
EPSS
Percentile
14.1%
libtiff.so is vulnerable to Denial Of Service (DoS). The vulnerability exists due to an out-of-bounds read in tiffcrop.c, allowing an attacker to cause an application crash through a maliciously crafted tiff file.
References
github.com/advisories/GHSA-9qfj-r558-84rj
gitlab.com/gitlab-org/cves/-/blob/master/2023/CVE-2023-0797.json
gitlab.com/libtiff/libtiff/-/commit/afaabc3e50d4e5d80a94143f7e3c997e7e410f68
gitlab.com/libtiff/libtiff/-/issues/495
lists.debian.org/debian-lts-announce/2023/02/msg00026.html
security.gentoo.org/glsa/202305-31
www.debian.org/security/2023/dsa-5361
Related
redhatcve
redhatcve
CVE-2023-0797
2023-02-15 19:30:08
cbl_mariner
cbl_mariner
CVE-2023-0797 affecting package libtiff 4.5.0-1
2023-03-09 19:51:01
CVE-2023-0797 affecting package libtiff for versions less than 4.4.0-8
2023-03-09 00:24:42
cvelist
cvelist
CVE-2023-0797
2023-02-13 00:00:00
nessus
nessus
CBL Mariner 2.0 Security Update: libtiff (CVE-2023-0797)
2023-03-20 00:00:00
Amazon Linux AMI : libtiff (ALAS-2023-1830)
2023-09-25 00:00:00
cnvd
cnvd
LibTIFF out-of-bounds read vulnerability (CNVD-2023-15745)
2023-02-15 00:00:00
ubuntucve
ubuntucve
CVE-2023-0797
2023-02-13 00:00:00
prion
prion
Out-of-bounds
2023-02-13 23:15:00
osv
osv
CVE-2023-0797
2023-02-13 23:15:11
tiff - security update
2023-02-24 00:00:00
tiff vulnerabilities
2023-03-06 17:07:54
nvd
nvd
CVE-2023-0797
2023-02-13 23:15:11
debiancve
debiancve
CVE-2023-0797
2023-02-13 23:15:11
cve
cve
CVE-2023-0797
2023-02-13 23:15:11
alpinelinux
alpinelinux
CVE-2023-0797
2023-02-13 23:15:11
amazon
amazon
Medium: libtiff
2023-09-13 23:15:00
Medium: libtiff
2023-08-31 22:29:00
Medium: libtiff
2023-08-31 22:29:00
openvas
openvas
Ubuntu: Security Advisory (USN-5923-1)
2023-03-07 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2452)
2023-07-31 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:2321-1)
2023-05-31 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerability
2023-03-02 00:14:31
debian
debian
[SECURITY] [DSA 5361-1] tiff security update
2023-02-24 08:12:14
[SECURITY] [DLA 3333-1] tiff security update
2023-02-21 22:59:14
cloudfoundry
cloudfoundry
USN-5923-1: LibTIFF vulnerabilities | Cloud Foundry
2023-03-23 00:00:00
ubuntu
ubuntu
LibTIFF vulnerabilities
2023-03-06 00:00:00
rocky
rocky
libtiff security update
2023-08-31 16:55:40
oraclelinux
oraclelinux
libtiff security update
2023-06-21 00:00:00
redhat
redhat
(RHSA-2023:3711) Moderate: libtiff security update
2023-06-21 13:52:06
almalinux
almalinux
Moderate: libtiff security update
2023-06-21 00:00:00
gentoo
gentoo
LibTIFF: Multiple Vulnerabilities
2023-05-30 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0605
2023-06-28 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0018
2023-06-06 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0417
2023-06-30 00:00:00