CVE-2023-3164

A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attackers to cause a denial of service via a crafted tiff file.

CVSS v3 5.5 MEDIUM

5.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://access.redhat.com/security/cve/CVE-2023-3164	Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2213531	Issue Tracking Third Party Advisory
https://gitlab.com/libtiff/libtiff/-/issues/542	Issue Tracking

Configurations

Configuration 1 (hide)

cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:9.0:::::::*

History

08 Mar 2024, 19:38

Type	Values Removed	Values Added
CPE	cpe:2.3:a:libtiff:libtiff:-:::::::*	cpe:2.3:a:libtiff:libtiff::::::::

30 Jan 2024, 20:26

Type	Values Removed	Values Added
CPE	cpe:2.3:a:fossies:gawk::::::::	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::* cpe:2.3:a:libtiff:libtiff:-:::::::* cpe:2.3:o:redhat:enterprise_linux:9.0:::::::*
First Time		Libtiff libtiff Libtiff

20 Dec 2023, 19:13

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~7.1~~	v2 : unknown v3 : 5.5
CWE	~~CWE-125~~	CWE-787
References	~~() https://access.redhat.com/security/cve/CVE-2023-3164 -~~	() https://access.redhat.com/security/cve/CVE-2023-3164 - Third Party Advisory
References	~~() https://bugzilla.redhat.com/show_bug.cgi?id=2213531 -~~	() https://bugzilla.redhat.com/show_bug.cgi?id=2213531 - Issue Tracking, Third Party Advisory
References	~~() https://gitlab.com/libtiff/libtiff/-/issues/542 -~~	() https://gitlab.com/libtiff/libtiff/-/issues/542 - Issue Tracking

08 Dec 2023, 12:15

Type	Values Removed	Values Added
Summary	~~A heap out-of-bounds read flaw was found in builtin.c in the gawk package. This issue may lead to a crash and could be used to read sensitive information.~~	A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection() at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attackers to cause a denial of service via a crafted tiff file.
References	~~{'url': 'https://access.redhat.com/security/cve/CVE-2023-4156', 'name': 'https://access.redhat.com/security/cve/CVE-2023-4156', 'tags': ['Third Party Advisory'], 'refsource': 'MISC'}~~ ~~{'url': 'https://bugzilla.redhat.com/show_bug.cgi?id=2215930', 'name': 'https://bugzilla.redhat.com/show_bug.cgi?id=2215930', 'tags': ['Issue Tracking', 'Patch'], 'refsource': 'MISC'}~~	() https://bugzilla.redhat.com/show_bug.cgi?id=2213531 - () https://access.redhat.com/security/cve/CVE-2023-3164 - () https://gitlab.com/libtiff/libtiff/-/issues/542 -

09 Nov 2023, 19:28

Type	Values Removed	Values Added
First Time		Fossies Redhat enterprise Linux Fossies gawk Redhat
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 7.1
References	~~(MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2215930 -~~	(MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2215930 - Issue Tracking, Patch
References	~~(MISC) https://access.redhat.com/security/cve/CVE-2023-4156 -~~	(MISC) https://access.redhat.com/security/cve/CVE-2023-4156 - Third Party Advisory
CPE		cpe:2.3:o:redhat:enterprise_linux:7.0:::::::* cpe:2.3:a:fossies:gawk::::::::
CWE		CWE-125

02 Nov 2023, 12:54

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-11-02 12:15

Updated : 2024-03-08 19:38

NVD link : CVE-2023-3164

Mitre link : CVE-2023-3164

CVE.ORG link : CVE-2023-3164

JSON object : View

Products Affected

redhat

enterprise_linux

libtiff

libtiff

CWE

CWE-787

Out-of-bounds Write

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

5.5 /10