Back to bug 2215209
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Sandipan Roy | 2023-06-15 05:54:48 UTC | Depends On | 2215210, 2215211 | |
| Sandipan Roy | 2023-06-15 05:55:38 UTC | Blocks | 2215212 | |
| TEJ RATHI | 2023-06-15 06:13:18 UTC | CC | adudiak, bdettelb, caswilli, dkuc, drieden, fjansen, hkataria, ikanias, jary, jburrell, jkoehler, jsherril, jwong, kaycoth, kshier, micjohns, rh-spice-bugs, rravi, sthirugn, tohughes | |
| TEJ RATHI | 2023-06-15 06:15:38 UTC | Depends On | 2215218, 2215220, 2215221, 2215219 | |
| TEJ RATHI | 2023-06-15 13:00:25 UTC | Depends On | 2215301 | |
| TEJ RATHI | 2023-06-16 05:39:10 UTC | CC | adudiak, jwong | |
| CC | drieden, ikanias, jary, rravi, tohughes | |||
| CC | jkoehler | |||
| Depends On | 2215460, 2215459 | |||
| TEJ RATHI | 2023-06-28 08:50:10 UTC | Doc Text | A heap-based buffer overflow flaw was found in LibTIFF's tiffcrop utility in extractContigSamplesBytes() function. This issue allows an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes an out-of-bound read access resulting in an application crash, eventually leading to a denial of service. | |
| Summary | TRIAGE-CVE-2023-25434 libtiff: Buffer Overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c:3215 | CVE-2023-25434 libtiff: heap-buffer overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c | ||
| Alias | TRIAGE-CVE-2023-25434 | CVE-2023-25434 | ||
| Sandipan Roy | 2023-06-28 09:12:31 UTC | Summary | CVE-2023-25434 libtiff: heap-buffer overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c | TRIAGE-CVE-2023-25434 libtiff: heap-buffer overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c |
| Sandipan Roy | 2023-06-28 09:12:59 UTC | Summary | TRIAGE-CVE-2023-25434 libtiff: heap-buffer overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c | CVE-2023-25434 libtiff: heap-buffer overflow via extractContigSamplesBytes() at /libtiff/tools/tiffcrop.c |
| RaTasha Tillery-Smith | 2023-06-28 13:29:59 UTC | Doc Text | A heap-based buffer overflow flaw was found in LibTIFF's tiffcrop utility in extractContigSamplesBytes() function. This issue allows an attacker to pass a crafted TIFF image file to tiffcrop utility, which causes an out-of-bound read access resulting in an application crash, eventually leading to a denial of service. | A heap-based buffer overflow vulnerability was found in LibTIFF's tiffcrop utility in the extractContigSamplesBytes() function. This flaw allows an attacker to pass a crafted TIFF image file to the tiffcrop utility, which causes an out-of-bounds read access resulting in an application crash, eventually leading to a denial of service. |
| Red Hat Bugzilla | 2023-07-07 08:35:45 UTC | Assignee | security-response-team | nobody |
Back to bug 2215209