Msrc Azl3 Libtiff 4.6.0-6 On Azure Linux 3.0 vulnerabilities

CVE-2024-7006 [HIGH] CWE-476 Libtiff: null pointer dereference in tif_dirinfo.c Libtiff: null pointer dereference in tif_dirinfo.c FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro i

CVE-2023-52356 [HIGH] CWE-787 Libtiff: segment fault in libtiff in tiffreadrgbatileext() leading to denial of service Libtiff: segment fault in libtiff in tiffreadrgbatileext() leading to denial of service FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent a

CVE-2023-6228 [LOW] CWE-787 Libtiff: heap-based buffer overflow in cpstriptotile() in tools/tiffcp.c Libtiff: heap-based buffer overflow in cpstriptotile() in tools/tiffcp.c FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the op

CVE-2023-3164 [MEDIUM] CWE-120 Heap-buffer-overflow in extractimagesection() Heap-buffer-overflow in extractimagesection() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compos

CVE-2023-6277 [MEDIUM] CWE-400 Libtiff: out-of-memory in tiffopen via a craft file Libtiff: out-of-memory in tiffopen via a craft file FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dist

CVE-2023-3618 [MEDIUM] CWE-120 Segmentation fault in fax3encode in libtiff/tif_fax3.c Segmentation fault in fax3encode in libtiff/tif_fax3.c FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which th