A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service.
History

Wed, 07 Aug 2024 22:45:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:enterprise_linux:8

Wed, 07 Aug 2024 16:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:enterprise_linux:8::appstream
cpe:/a:redhat:enterprise_linux:8::crb
References

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2024-01-25T20:03:40.971Z

Updated: 2024-08-20T15:47:52.056Z

Reserved: 2024-01-24T14:08:49.010Z

Link: CVE-2023-52356

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2024-01-25T20:15:39.063

Modified: 2024-08-07T16:15:43.920

Link: CVE-2023-52356

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-11-03T00:00:00Z

Links: CVE-2023-52356 - Bugzilla