A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.
References
Link | Resource |
---|---|
https://access.redhat.com/errata/RHSA-2024:2289 | |
https://access.redhat.com/security/cve/CVE-2023-41175 | Third Party Advisory |
https://bugzilla.redhat.com/show_bug.cgi?id=2235264 | Issue Tracking Third Party Advisory |
Configurations
History
30 Apr 2024, 15:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-10-05 19:15
Updated : 2024-04-30 15:15
NVD link : CVE-2023-41175
Mitre link : CVE-2023-41175
CVE.ORG link : CVE-2023-41175
JSON object : View
Products Affected
fedoraproject
- fedora
libtiff
- libtiff
redhat
- enterprise_linux