Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2025-8177

Опубликовано: 26 июл. 2025
Источник: ubuntu
Приоритет: low
EPSS Низкий
CVSS2: 4.3
CVSS3: 5.3

Описание

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

РелизСтатусПримечание
devel

not-affected

tool not packaged
esm-infra-legacy/trusty

released

4.0.3-7ubuntu0.11+esm15
esm-infra/bionic

not-affected

tool not packaged
esm-infra/focal

not-affected

tool not packaged
esm-infra/xenial

released

4.0.6-1ubuntu0.8+esm18
jammy

not-affected

tool not packaged
noble

not-affected

tool not packaged
plucky

not-affected

tool not packaged
upstream

needs-triage

Показывать по

Ссылки на источники

EPSS

Процентиль: 3%
0.00017
Низкий

4.3 Medium

CVSS2

5.3 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2025-8177

CVSS3: 5.3
redhat
3 месяца назад

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

nvd логотип

CVE-2025-8177

CVSS3: 5.3
nvd
3 месяца назад

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

debian логотип

CVE-2025-8177

CVSS3: 5.3
debian
3 месяца назад

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as ...

github логотип

GHSA-w743-578r-x56m

CVSS3: 5.3
github
3 месяца назад

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

suse-cvrf логотип

SUSE-SU-2025:02815-1

suse-cvrf
2 месяца назад

Security update for tiff

EPSS

Процентиль: 3%
0.00017
Низкий

4.3 Medium

CVSS2

5.3 Medium

CVSS3

Уязвимость CVE-2025-8177