JLSEC-2025-313
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c
A vulnerability was found in libtiff due to multiple potential integer overflows in raw2tiff.c. This flaw allows remote attackers to cause a denial of service or possibly execute an arbitrary code via a crafted tiff image, which triggers a heap-based buffer overflow.
References
- https://access.redhat.com/errata/RHSA-2024:2289
- https://access.redhat.com/security/cve/CVE-2023-41175
- https://bugzilla.redhat.com/show_bug.cgi?id=2235264
- https://access.redhat.com/errata/RHSA-2024:2289
- https://access.redhat.com/security/cve/CVE-2023-41175
- https://bugzilla.redhat.com/show_bug.cgi?id=2235264