CNNVD-202508-107 Information
CNNVD ID
CNNVD-202508-107
Related CVE
- CNNVD Published: 2025-08-01
Description (Chinese)
LibTIFF是LibTIFF开源的一个读写TIFF(标签图像文件格式)文件的库。该库包含一些处理TIFF文件的命令行工具。 LibTIFF 4.7.0及之前版本存在安全漏洞,该漏洞源于t2p_read_tiff_init函数存在空指针取消引用问题。
Description (English)
LibTIFF is a library of reading and writing TIFF files from the LibTIFF open source. The library contains a number of command line tools to process TIFF files. There is a security loophole in LibTIFF 4.7.0 and earlier versions, which stems from the t2p read tiff init function with an empty pointer cancellation problem.
Hazard Level
Critical
Vulnerability Type
其他
Affected Vendor
LibTIFF
Published
2025-08-01
Last Modified
2026-02-24
References
http://www.libtiff.org/ https://gitlab.com/libtiff/libtiff/-/commit/2ebfffb0e8836bfb1cd7d85c059cd285c59761a4 https://gitlab.com/libtiff/libtiff/-/issues/649 https://gitlab.com/libtiff/libtiff/-/merge_requests/667 https://vuldb.com/?ctiid.318355 https://vuldb.com/?id.318355 https://vuldb.com/?submit.624562
Share on: