Vulnerability — CVE-2023-1916

CVE-2023-1916

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2023-1916
Description:: A flaw was found in tiffcrop, a program distributed by the libtiff package. A specially crafted tiff file can lead to an out-of-bounds read in the extractImageSection function in tools/tiffcrop.c, resulting in a denial of service and limited information disclosure. This issue affects libtiff versions 4.x.
Last updated date:: 12/23/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 04/18/2023
Reference url to background: https://gitlab.com/libtiff/libtiff/-/issues/536

Type:: exploit
Confidence:: HIGH
Date of publishing:: 04/18/2023
Reference url to background: https://gitlab.com/libtiff/libtiff/-/issues/537