It was discovered that LibTIFF was not properly handling variables used to perform memory management operations when processing an image through tiffcrop, which could lead to a heap buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. (CVE-2023-25433, CVE-2023-26965)
It was discovered that LibTIFF was not properly processing numerical values when dealing with little-endian input data, which could lead to the execution of an invalid operation. An attacker could possibly use this issue to cause a denial of service (CVE-2023-26966)
It was discovered that LibTIFF was not properly performing bounds checks when closing a previously opened TIFF file, which could lead to a NULL pointer dereference. An attacker could possibly use this issue to cause a denial of service. (CVE-2023-3316)
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_name": "libtiff-doc", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff-opengl", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff-opengl-dbgsym", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff-tools", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff-tools-dbgsym", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff4-dev", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff5", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff5-alt-dev", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff5-dbgsym", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiff5-dev", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiffxx5", "binary_version": "4.0.3-7ubuntu0.11+esm8" }, { "binary_name": "libtiffxx5-dbgsym", "binary_version": "4.0.3-7ubuntu0.11+esm8" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_name": "libtiff-doc", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiff-opengl", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiff-opengl-dbgsym", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiff-tools", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiff-tools-dbgsym", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiff5", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiff5-dbgsym", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiff5-dev", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiffxx5", "binary_version": "4.0.6-1ubuntu0.8+esm11" }, { "binary_name": "libtiffxx5-dbgsym", "binary_version": "4.0.6-1ubuntu0.8+esm11" } ] }
{ "availability": "Available with Ubuntu Pro (Infra-only): https://ubuntu.com/pro", "binaries": [ { "binary_name": "libtiff-dev", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiff-doc", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiff-opengl", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiff-opengl-dbgsym", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiff-tools", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiff-tools-dbgsym", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiff5", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiff5-dbgsym", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiff5-dev", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiffxx5", "binary_version": "4.0.9-5ubuntu0.10+esm1" }, { "binary_name": "libtiffxx5-dbgsym", "binary_version": "4.0.9-5ubuntu0.10+esm1" } ] }