Msrc Cbl2 Libtiff 4.4.0-8 On Cbl Mariner 2.0 vulnerabilities

10 known vulnerabilities affecting msrc/cbl2_libtiff_4.4.0-8_on_cbl_mariner_2.0.

Total CVEs
10
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM10

Vulnerabilities

Page 1 of 1
CVE-2023-0795MEDIUMCVSS 5.52023-02-14
CVE-2023-0795 [MEDIUM] CWE-125 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fi LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit afaabc3e. FAQ: Is Azure Linux the only M
msrc
CVE-2023-0798MEDIUMCVSS 5.52023-02-14
CVE-2023-0798 [MEDIUM] CWE-125 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fi LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3400 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit afaabc3e. FAQ: Is Azure Linux the only M
msrc
CVE-2023-0801MEDIUMCVSS 5.52023-02-14
CVE-2023-0801 [MEDIUM] CWE-787 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368 invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778 allowing attackers to cause a denial-of-service via a crafted LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in libtiff/tif_unix.c:368 invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6778 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is av
msrc
CVE-2023-0799MEDIUMCVSS 5.52023-02-14
CVE-2023-0799 [MEDIUM] CWE-416 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fi LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3701 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit afaabc3e. FAQ: Is Azure Linux the only M
msrc
CVE-2023-0796MEDIUMCVSS 5.52023-02-14
CVE-2023-0796 [MEDIUM] CWE-125 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fi LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3592 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit afaabc3e. FAQ: Is Azure Linux the only M
msrc
CVE-2023-0803MEDIUMCVSS 5.52023-02-14
CVE-2023-0803 [MEDIUM] CWE-787 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the f LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3516 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 33aee127. FAQ: Is Azure Linux the only
msrc
CVE-2023-0797MEDIUMCVSS 5.52023-02-14
CVE-2023-0797 [MEDIUM] CWE-125 LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368 invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921 allowing attackers to cause a denial-of-service via a crafted t LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in libtiff/tif_unix.c:368 invoked by tools/tiffcrop.c:2903 and tools/tiffcrop.c:6921 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is ava
msrc
CVE-2023-0802MEDIUMCVSS 5.52023-02-14
CVE-2023-0802 [MEDIUM] CWE-787 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the f LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3724 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 33aee127. FAQ: Is Azure Linux the only
msrc
CVE-2023-0804MEDIUMCVSS 5.52023-02-14
CVE-2023-0804 [MEDIUM] CWE-787 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the f LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3609 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 33aee127. FAQ: Is Azure Linux the only
msrc
CVE-2023-0800MEDIUMCVSS 5.52023-02-14
CVE-2023-0800 [MEDIUM] CWE-787 LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the f LibTIFF 4.4.0 has an out-of-bounds write in tiffcrop in tools/tiffcrop.c:3502 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit 33aee127. FAQ: Is Azure Linux the only
msrc