CVE-2023-6277

Опубликовано: 24 нояб. 2023

Источник: ubuntu

Приоритет: low

EPSS Низкий

CVSS3: 6.5

Описание

An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB.

Релиз	Статус	Примечание
bionic	ignored	end of standard support
devel	not-affected	4.5.1+git230720-3ubuntu1
esm-infra-legacy/trusty	released	4.0.3-7ubuntu0.11+esm12
esm-infra/bionic	released	4.0.9-5ubuntu0.10+esm5
esm-infra/focal	released	4.1.0+git191117-2ubuntu0.20.04.12
esm-infra/xenial	released	4.0.6-1ubuntu0.8+esm15
focal	released	4.1.0+git191117-2ubuntu0.20.04.12
jammy	released	4.3.0-6ubuntu0.8
lunar	ignored	end of life, was needed
mantic	released	4.5.1+git230720-1ubuntu1.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 61%

0.00418

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2023-6277

CVSS3: 6.5

redhat

около 2 лет назад

An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB.

CVE-2023-6277

CVSS3: 6.5

nvd

около 2 лет назад

An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB.

CVE-2023-6277

CVSS3: 6.5

msrc

12 месяцев назад

Описание отсутствует

CVE-2023-6277

CVSS3: 6.5

debian

около 2 лет назад

An out-of-memory flaw was found in libtiff. Passing a crafted tiff fil ...

GHSA-fq8g-55cp-756j

CVSS3: 7.5

github

около 2 лет назад

An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB.

EPSS

Процентиль: 61%

0.00418

Низкий

6.5 Medium

CVSS3

CVE-2023-6277

Описание

Пакет tiff

Ссылки на источники

Связанные уязвимости