CVE-2025-8177

Medium CVSS: 4.8

A vulnerability was found in LibTIFF up to 4.7.0. It has been rated as critical. This issue affects the function setrow of the file tools/thumbnail.c. The manipulation leads to buffer overflow. An attack has to be approached locally. The patch is named e8c9d6c616b19438695fd829e58ae4fde5bfbc22. It is recommended to apply a patch to fix this issue. This vulnerability only affects products that are no longer supported by the maintainer.

Vendor

Libtiff

Product

Libtiff

CWE

CWE-119

Yayın Tarihi

2025-07-26 04:16:10

Güncelleme

2025-09-11 16:57:45

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-119 Libtiff MEDIUM Libtiff 2025

Referanslar

http://www.libtiff.org/ https://gitlab.com/libtiff/libtiff/-/commit/e8c9d6c616b19438695fd829e58ae4fde5bfbc22 https://gitlab.com/libtiff/libtiff/-/issues/715 https://gitlab.com/libtiff/libtiff/-/merge_requests/737 https://vuldb.com/?ctiid.317591 https://vuldb.com/?id.317591 https://vuldb.com/?submit.621797 https://gitlab.com/libtiff/libtiff/-/issues/715 https://vuldb.com/?submit.621797

Benzer Kayıtlar

Medium

CVE-2025-61143

libtiff up to v4.7.1 was discovered to contain a NULL pointer dereference via the component libtiff/tif_open.c.

High

CVE-2025-61144

libtiff up to v4.7.1 was discovered to contain a stack overflow via the readSeparateStripsIntoBuffer function.

Medium

CVE-2025-61145

libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c.

Low

CVE-2025-9165

A flaw has been found in LibTIFF 4.7.0. This affects the function _TIFFmallocExt/_TIFFCheckRealloc/TIFFHashSetNew/InitCC…

Medium

CVE-2025-8961

A weakness has been identified in LibTIFF 4.7.0. This affects the function main of the file tiffcrop.c of the component…

Medium

CVE-2025-8851

A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffe…