Updated libtiff packages fix security vulnerability
Publication date: 07 Jun 2024Modification date: 07 Jun 2024
Type: security
Affected Mageia releases : 9
CVE: CVE-2023-3164
Description
A heap-buffer-overflow vulnerability was found in LibTIFF, in
extractImageSection() at tools/tiffcrop.c:7916 and
tools/tiffcrop.c:7801.
This flaw allows attackers to cause a denial of service via a crafted
tiff file. (CVE-2023-3164)
References
SRPMS
9/core
- libtiff-4.5.1-1.4.mga9