Lucene search

Veracode Vulnerability DatabaseVERACODE:40529

HistoryMay 15, 2023 - 11:50 a.m.

Denial Of Service (DoS)

2023-05-1511:50:55

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

denial of service

libtiff.so

buffer overflow

memory corruption

application crash

file reading

EPSS

Percentile

5.1%

JSON

libtiff.so is vulnerable to Denial Of Service (DoS). The vulnerability exists due to a buffer overflow when reading a file with multiple IFD which causes a memory corruption resulting in an application crash.

References

libtiff-release-v4-0-7.com

tiffcp.com

github.com/advisories/GHSA-9489-j7g7-5xg4

github.com/libsdl-org/libtiff/commit/5e18004500cda10d9074bdb6166b054e95b659ed

gitlab.com/libtiff/libtiff/-/issues/538

gitlab.com/libtiff/libtiff/-/merge_requests/306

security-tracker.debian.org/tracker/CVE-2023-30086

security.netapp.com/advisory/ntap-20230616-0003/

EPSS

Percentile

5.1%

JSON

Related for VERACODE:40529