VDB
DEBIAN-CVE-2025-61145
DEBIAN-CVE-2025-61145
PUBLISHED
CVSS 5 MEDIUM
libtiff up to v4.7.1 was discovered to contain a double free via the component tools/tiffcrop.c.
Risk Scores
CVSS 3.1
5
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:13 | tiff | 4.7.1-2, 0, 4.7.0-3 |
| Debian:14 | tiff | 4.7.0-3, 4.7.0-5, 4.7.0-3 |
| Debian:12 | tiff | 4.5.0-6, 4.5.0-6, 4.5.0-6 |
| Debian:11 | tiff | 4.4.0-6, 4.4.0, 4.5.0-1 |
Timeline
- Feb 23, 2026 CVE Published
- Apr 28, 2026 CVE Updated