Описание
A null pointer dereference flaw was found in Libtiff via tif_dirinfo.c. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | uses system tiff |
| esm-apps/bionic | not-affected | uses system tiff |
| esm-apps/focal | not-affected | uses system tiff |
| esm-apps/jammy | not-affected | uses system tiff |
| esm-apps/noble | not-affected | uses system tiff |
| esm-apps/xenial | needs-triage | |
| esm-infra-legacy/trusty | needs-triage | |
| focal | not-affected | uses system tiff |
| jammy | not-affected | uses system tiff |
| noble | not-affected | uses system tiff |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | dropped embedded libtiff |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | not-affected | dropped embedded libtiff |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | not-affected | dropped embedded libtiff |
| oracular | not-affected | dropped embedded libtiff |
| plucky | not-affected | dropped embedded libtiff |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | needs-triage | |
| oracular | ignored | end of life, was needs-triage |
| plucky | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | needs-triage | |
| esm-apps/bionic | needs-triage | |
| esm-apps/focal | needs-triage | |
| esm-apps/jammy | needs-triage | |
| esm-apps/noble | needs-triage | |
| esm-apps/xenial | needs-triage | |
| focal | ignored | end of standard support, was needs-triage |
| jammy | needs-triage | |
| noble | needs-triage | |
| oracular | ignored | end of life, was needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 4.5.1+git230720-4ubuntu4 |
| esm-infra-legacy/trusty | not-affected | 4.0.3-7ubuntu0.11+esm14 |
| esm-infra/bionic | released | 4.0.9-5ubuntu0.10+esm7 |
| esm-infra/focal | not-affected | 4.1.0+git191117-2ubuntu0.20.04.14 |
| esm-infra/xenial | released | 4.0.6-1ubuntu0.8+esm17 |
| focal | released | 4.1.0+git191117-2ubuntu0.20.04.14 |
| jammy | released | 4.3.0-6ubuntu0.10 |
| noble | released | 4.5.1+git230720-4ubuntu2.2 |
| oracular | released | 4.5.1+git230720-4ubuntu4 |
| plucky | released | 4.5.1+git230720-4ubuntu4 |
Показывать по
EPSS
7.5 High
CVSS3
Связанные уязвимости
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.
A null pointer dereference flaw was found in Libtiff via `tif_dirinfo. ...
EPSS
7.5 High
CVSS3