CVE-2023-30086: Out-of-bounds Write

May 9, 2023 (updated June 16, 2023)

Buffer Overflow vulnerability found in Libtiff V.4.0.7 allows a local attacker to cause a denial of service via the tiffcp function in tiffcp.c.

References

libtiff-release-v4-0-7.com/
tiffcp.com/
gitlab.com/libtiff/libtiff/-/issues/538
nvd.nist.gov/vuln/detail/CVE-2023-30086

Detect and mitigate CVE-2023-30086 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →