Download
| Alert*
ALAS2-2023-2263 --- libtiff
The DumpModeDecode function in libtiff 4.0.6 and earlier allows attackers to cause a denial of service via a crafted tiff image. A divide-by-zero vulnerability was found in libtiff. This flaw allows an attacker to cause a denial of service via a crafted tiff file. loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image
|