CVE-2023-3164

Out-of-bounds Write in conan/libtiff

Identifiers

CVE-2023-3164

Package Slug

conan/libtiff

Vulnerability

Out-of-bounds Write

Description

A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attackers to cause a denial of service via a crafted tiff file.

Affected Versions

All versions up to and including 4.6.0

Solution

Unfortunately, there is no solution available yet.

Last Modified

2024-01-31

source