Back to bug 2215206
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Sandipan Roy | 2023-06-15 05:52:26 UTC | Alias | CVE-2023-26965 | TRIAGE-CVE-2023-26965 |
| Summary | CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF imag | TRIAGE-CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF imag | ||
| Sandipan Roy | 2023-06-15 05:52:45 UTC | Depends On | 2215207, 2215208 | |
| Sandipan Roy | 2023-06-15 05:55:38 UTC | Blocks | 2215212 | |
| TEJ RATHI | 2023-06-15 06:06:00 UTC | CC | adudiak, bdettelb, caswilli, dkuc, drieden, fjansen, hkataria, ikanias, jary, jburrell, jkoehler, jsherril, jwong, kaycoth, kshier, micjohns, rh-spice-bugs, rravi, sthirugn, tohughes | |
| TEJ RATHI | 2023-06-15 06:17:37 UTC | Depends On | 2215226, 2215223, 2215222, 2215224 | |
| TEJ RATHI | 2023-06-15 13:00:15 UTC | Depends On | 2215301 | |
| TEJ RATHI | 2023-06-16 05:39:20 UTC | CC | adudiak, jwong | |
| CC | drieden, ikanias, jary, rravi, tohughes | |||
| CC | jkoehler | |||
| Depends On | 2215460, 2215459 | |||
| TEJ RATHI | 2023-06-28 08:22:25 UTC | Summary | TRIAGE-CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF imag | CVE-2023-26965 TRIAGE-CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF imag |
| Alias | TRIAGE-CVE-2023-26965 | CVE-2023-26965 | ||
| TEJ RATHI | 2023-06-28 08:22:41 UTC | Summary | CVE-2023-26965 TRIAGE-CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF imag | CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF imag |
| TEJ RATHI | 2023-06-28 08:35:19 UTC | Doc Text | A heap use-after free flaw was found in LibTIFF's tiffcrop utility in loadImage() function. This issue allows an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes an out-of-bound write access resulting an application crash, eventually leading to a denial of service. | |
| Summary | CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF imag | CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF image | ||
| Sandipan Roy | 2023-06-28 09:14:14 UTC | Summary | CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF image | TRIAGE-CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF image |
| Sandipan Roy | 2023-06-28 09:14:30 UTC | Summary | TRIAGE-CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF image | CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF image |
| TEJ RATHI | 2023-06-28 12:55:34 UTC | Summary | CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF image | CVE-2023-26965 libtiff: heap-based use after free via a crafted TIFF image in loadImage() in tiffcrop.c |
| RaTasha Tillery-Smith | 2023-06-28 13:28:18 UTC | Doc Text | A heap use-after free flaw was found in LibTIFF's tiffcrop utility in loadImage() function. This issue allows an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes an out-of-bound write access resulting an application crash, eventually leading to a denial of service. | A heap use-after-free vulnerability was found in LibTIFF's tiffcrop utility in the loadImage() function. This flaw allows an attacker to pass a crafted TIFF image file to the tiffcrop utility, which causes an out-of-bounds write access, resulting in an application crash, eventually leading to a denial of service. |
| Red Hat Bugzilla | 2023-07-07 08:33:42 UTC | Assignee | security-response-team | nobody |
Back to bug 2215206