SecPod SCAP Repo, a repository of SCAP Content (CVE, CCE, CPE, CWE, OVAL and XCCDF)

Paid content will be excluded from the download.

Download | Alert*

OVAL

ALAS2023-2023-271 --- libtiff

ID: oval:org.secpod.oval:def:19500313	Date: (C)2024-01-04 (M)2024-01-04
Class: PATCH	Family: unix

loadImage in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based use after free via a crafted TIFF image

Platform:

Amazon Linux 2023

Product:

libtiff

Reference:

ALAS2023-2023-271

CVE 1

CPE 1