CVE-2023-2731NULL Pointer Dereference in Libtiff

CWE-476NULL Pointer Dereference9 documents8 sources
Severity
5.5MEDIUMNVD
EPSS
0.0%
top 98.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
LibtiffFedoraproject FedoraRedhat Enterprise Linux
Timeline
PublishedMay 17
Latest updateAug 15

Description

A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to dereference a NULL pointer when decompressing a TIFF format file, resulting in a program crash or denial of service.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDlibtiff/libtiff< 4.5.0
CVEListV5libtiff/libtiffFixed in libtiff v4.5.0

Also affects: Fedora 38, Enterprise Linux 9.0

Patches

Patch: bugzilla.redhat.comPatch: github.comPatch: gitlab.com

🔴Vulnerability Details

4
OSV
tiff vulnerabilities2023-08-15
GHSA
GHSA-g995-h8wx-7qw6: A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw2023-05-18
CVEList
CVE-2023-2731: A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw2023-05-17
OSV
CVE-2023-2731: A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw2023-05-17

📋Vendor Advisories

4
Ubuntu
LibTIFF vulnerabilities2023-08-15
Microsoft
A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c file. This flaw allows a local attacker to craft specific input data that can cause the program to 2023-05-09
Red Hat
libtiff: null pointer deference in LZWDecode() in libtiff/tif_lzw.c2023-04-22
Debian
CVE-2023-2731: tiff - A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in t...2023
CVE-2023-2731 — NULL Pointer Dereference in Libtiff | cvebase