Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-30774HistoryMay 19, 2023 - 3:15 p.m.
CVE-2023-30774
2023-05-1915:15:08
Debian Security Bug Tracker
security-tracker.debian.org
9
vulnerability
libtiff
buffer overflow
tifftag_inknames
tifftag_numberofinks
unix
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
23.3%
A vulnerability was found in the libtiff library. This flaw causes a heap buffer overflow issue via the TIFFTAG_INKNAMES and TIFFTAG_NUMBEROFINKS values.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | tiff | < 4.4.0-5 | tiff_4.4.0-5_all.deb |
| Debian | 11 | all | tiff | < 4.2.0-1+deb11u3 | tiff_4.2.0-1+deb11u3_all.deb |
| Debian | 999 | all | tiff | < 4.4.0-5 | tiff_4.4.0-5_all.deb |
| Debian | 13 | all | tiff | < 4.4.0-5 | tiff_4.4.0-5_all.deb |
Related
cvelist
cvelist
CVE-2023-30774
2023-05-19 00:00:00
nessus
nessus
Amazon Linux AMI : libtiff (ALAS-2023-1847)
2023-10-06 00:00:00
Amazon Linux 2 : libtiff (ALAS-2023-2274)
2023-10-05 00:00:00
amazon
amazon
Medium: libtiff
2023-09-27 22:15:00
Medium: libtiff
2023-09-27 22:48:00
cve
cve
CVE-2023-30774
2023-05-19 15:15:08
prion
prion
Heap overflow
2023-05-19 15:15:00
veracode
veracode
Heap-based Buffer Overflow
2023-05-18 06:26:26
osv
osv
CVE-2023-30774
2023-05-19 15:15:08
Moderate: libtiff security update
2023-05-09 00:00:00
redhatcve
redhatcve
CVE-2023-30774
2023-04-17 05:30:41
nvd
nvd
CVE-2023-30774
2023-05-19 15:15:08
ubuntucve
ubuntucve
CVE-2023-30774
2023-05-19 00:00:00
redos
redos
ROS-20230621-02
2023-06-21 00:00:00
almalinux
almalinux
Moderate: libtiff security update
2023-05-09 00:00:00
oraclelinux
oraclelinux
libtiff security update
2023-05-15 00:00:00
redhat
redhat
(RHSA-2023:2340) Moderate: libtiff security update
2023-05-09 05:07:52
ibm
ibm
openvas
openvas
Apple Mac OS X Security Update (HT213984)
2023-10-27 00:00:00
apple
apple
About the security content of macOS Sonoma 14.1
2023-10-25 00:00:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
23.3%
Related for DEBIANCVE:CVE-2023-30774