OSV-2023-55

See a problem?
Import Source
https://github.com/google/oss-fuzz-vulns/blob/main/vulns/kimageformats/OSV-2023-55.yaml
JSON Data
https://api.osv.dev/v1/vulns/OSV-2023-55
Published
2023-02-07T13:00:07.438565Z
Modified
2026-06-12T14:24:39.627071Z
Summary
Index-out-of-bounds in LibRaw::apply_tiff
Details

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=55722

Crash type: Index-out-of-bounds
Crash state:
LibRaw::apply_tiff
LibRaw::parse_jpeg
LibRaw::identify
References

Affected packages

OSS-Fuzz / kimageformats

Package

Name
kimageformats
Purl
pkg:generic/kimageformats

Affected ranges

Type
GIT
Repo
https://invent.kde.org/frameworks/kimageformats.git
Events
Introduced
d881a7bbb1562af383bbb6ca20340ad739fb0d13

Affected versions

v5.*
v5.100.0-rc1
v5.101.0
v5.101.0-rc1
v5.102.0
v5.102.0-rc1
v5.103.0
v5.103.0-rc1
v5.104.0
v5.104.0-rc1
v5.105.0
v5.105.0-rc1
v5.106.0
v5.106.0-rc1
v5.107.0
v5.107.0-rc1
v5.108.0
v5.108.0-rc1
v5.109.0
v5.109.0-rc1
v5.110.0
v5.110.0-rc1
v5.111.0
v5.111.0-rc1
v5.112.0
v5.112.0-rc1
v5.113.0
v5.113.0-rc1
v5.114.0
v5.114.0-rc1
v5.115.0
v5.115.0-rc1
v5.116.0
v5.116.0-rc1
v5.245.0
v5.246.0
v5.247.0
v5.248.0
v5.249.0
v5.99.0
v5.99.0-rc1
v6.*
v6.0.0
v6.1.0
v6.10.0
v6.10.0-rc1
v6.11.0
v6.11.0-rc1
v6.12.0
v6.12.0-rc1
v6.12.0-rc2
v6.13.0
v6.13.0-rc1
v6.14.0
v6.14.0-rc1
v6.15.0
v6.15.0-rc1
v6.16.0
v6.16.0-rc1
v6.17.0
v6.17.0-rc1
v6.18.0
v6.18.0-rc1
v6.19.0
v6.19.0-rc1
v6.2.0
v6.20.0
v6.20.0-rc1
v6.21.0
v6.21.0-rc1
v6.22.0
v6.22.0-rc1
v6.23.0
v6.23.0-rc1
v6.24.0
v6.24.0-rc1
v6.25.0
v6.25.0-rc1
v6.26.0
v6.26.0-rc1
v6.27.0
v6.27.0-rc1
v6.3.0
v6.3.0-rc1
v6.4.0
v6.4.0-rc1
v6.5.0
v6.5.0-rc1
v6.6.0
v6.6.0-rc1
v6.7.0
v6.7.0-rc1
v6.8.0
v6.8.0-rc1
v6.9.0
v6.9.0-rc1

Ecosystem specific 

{
    "severity": "MEDIUM"
}

Database specific

source 
"https://github.com/google/oss-fuzz-vulns/blob/main/vulns/kimageformats/OSV-2023-55.yaml"