CVE-2025-61144

Опубликовано: 23 фев. 2026

Источник: debian

EPSS Низкий

Описание

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.

Пакет	Статус	Версия исправления	Релиз	Тип
tiff	fixed	4.7.1-1		package

https://gitlab.com/libtiff/libtiff/-/issues/740
https://gitlab.com/libtiff/libtiff/-/merge_requests/757
Fixed by: https://gitlab.com/libtiff/libtiff/-/commit/88cf9dbb48f6e172629795ecffae35d5052f68aa (v4.7.1rc1)
Crash in CLI tool, no security impact

EPSS

Процентиль: 9%

0.0003

Низкий

CVE-2025-61144

CVSS3: 7.3

ubuntu

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.

CVE-2025-61144

CVSS3: 5

redhat

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.

CVE-2025-61144

CVSS3: 7.3

nvd

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.

CVE-2025-61144

CVSS3: 9.8

msrc

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.

GHSA-m6xw-mq4p-x7xv

CVSS3: 7.3

github

около 1 месяца назад

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.

EPSS

Процентиль: 9%

0.0003

Низкий