Описание
A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the component tiffcrop. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.
Меры по смягчению последствий
Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 10 | libtiff | Fix deferred | ||
| Red Hat Enterprise Linux 6 | libtiff | Fix deferred | ||
| Red Hat Enterprise Linux 7 | compat-libtiff3 | Fix deferred | ||
| Red Hat Enterprise Linux 7 | libtiff | Fix deferred | ||
| Red Hat Enterprise Linux 8 | compat-libtiff3 | Fix deferred | ||
| Red Hat Enterprise Linux 8 | libtiff | Fix deferred | ||
| Red Hat Enterprise Linux 8 | mingw-libtiff | Fix deferred | ||
| Red Hat Enterprise Linux 9 | libtiff | Fix deferred |
Показывать по
Ссылки на источники
Дополнительная информация
Статус:
EPSS
3.3 Low
CVSS3
Связанные уязвимости
A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the component tiffcrop. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.
A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the component tiffcrop. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.
A vulnerability was identified in LibTIFF 4.7.0. This issue affects th ...
A vulnerability was identified in LibTIFF 4.7.0. This issue affects the function May of the file tiffcrop.c of the component tiffcrop. The manipulation leads to memory corruption. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used.
EPSS
3.3 Low
CVSS3