Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2023-3576

Опубликовано: 07 мар. 2023
Источник: redhat
CVSS3: 5.5

Описание

A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denial of service.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6libtiffOut of support scope
Red Hat Enterprise Linux 7compat-libtiff3Out of support scope
Red Hat Enterprise Linux 7libtiffOut of support scope
Red Hat Enterprise Linux 8compat-libtiff3Will not fix
Red Hat Enterprise Linux 8libtiffWill not fix
Red Hat Enterprise Linux 8mingw-libtiffWill not fix
Red Hat Enterprise Linux 9compat-libtiff3Affected
Red Hat Enterprise Linux 9libtiffFixedRHSA-2023:657507.11.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-119
https://bugzilla.redhat.com/show_bug.cgi?id=2219340libtiff: memory leak in tiffcrop.c

5.5 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2023-3576

CVSS3: 5.5
ubuntu
больше 2 лет назад

A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denial of service.

nvd логотип

CVE-2023-3576

CVSS3: 5.5
nvd
больше 2 лет назад

A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denial of service.

debian логотип

CVE-2023-3576

CVSS3: 5.5
debian
больше 2 лет назад

A memory leak flaw was found in Libtiff's tiffcrop utility. This issue ...

github логотип

GHSA-qfgr-f5j7-2xxf

CVSS3: 5.5
github
больше 2 лет назад

A memory leak flaw was found in Libtiff's tiffcrop utility. This issue occurs when tiffcrop operates on a TIFF image file, allowing an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes this memory leak issue, resulting an application crash, eventually leading to a denial of service.

fstec логотип

BDU:2023-05973

CVSS3: 5.5
fstec
почти 3 года назад

Уязвимость утилиты tiffcrop библиотеки LibTIFF, позволяющая нарушителю вызвать отказ в обслуживании

5.5 Medium

CVSS3