CVE-2023-6228

Summary

An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash.

Affected Software

VendorProductVersion RangeStatus
Red HatRed Hat Enterprise Linux 80:4.0.9-32.el8_10 < *unaffected
Red HatRed Hat Enterprise Linux 90:4.4.0-12.el9 < *unaffected

Weaknesses

  • CWE-787: Out-of-bounds Write

ADP Enrichment

CVE Program Container

Additional References

References