Lucene search

RedhatCVELIST:CVE-2023-30775

HistoryMay 19, 2023 - 12:00 a.m.

CVE-2023-30775

2023-05-1900:00:00

CWE-119

redhat

www.cve.org

vulnerability

libtiff

heap buffer overflow

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

20.5%

JSON

A vulnerability was found in the libtiff library. This security flaw causes a heap buffer overflow in extractContigSamples32bits, tiffcrop.c.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "libtiff",
    "versions": [
      {
        "version": "4.0",
        "status": "affected"
      }
    ]
  }
]

References

access.redhat.com/security/cve/CVE-2023-30775

bugzilla.redhat.com/show_bug.cgi?id=2187141

gitlab.com/libtiff/libtiff/-/issues/464

security.netapp.com/advisory/ntap-20230703-0002/