CVE-2023-3316

MEDIUM

libtiff 3.9.0-4.5.0 - Denial of Service via TIFFClose() NULL Pointer Dereference

Title source: llm

Description

A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.

References (5)

Core 5

Core References

Mailing List

https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html

Mailing List

https://lists.debian.org/debian-lts-announce/2025/01/msg00019.html

Exploit, Patch, Third Party Advisory

https://gitlab.com/libtiff/libtiff/-/issues/515

Patch, Third Party Advisory

https://gitlab.com/libtiff/libtiff/-/merge_requests/468

Exploit, Third Party Advisory

https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/

Scores

CVSS v3 5.9

EPSS 0.0002

EPSS Percentile 6.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-476

Status published

Products (1)

libtiff/libtiff 3.9.0 - 4.5.1

Published Jun 19, 2023

Tracked Since Feb 18, 2026