VDB
JLSEC-2025-303
JLSEC-2025-303
PUBLISHED
CVSS 6.900000095367432 MEDIUM
A NULL pointer dereference flaw was found in Libtiff's LZWDecode() function in the libtiff/tif_lzw.c...
Risk Scores
CVSS v4.0
6.900000095367432
CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Julia | Libtiff_jll | 0, 0 |
Timeline
- Nov 25, 2025 CVE Published
- Nov 25, 2025 CVE Updated
References
- https://access.redhat.com/security/cve/CVE-2023-2731 url
- https://bugzilla.redhat.com/show_bug.cgi?id=2207635 url
- https://github.com/libsdl-org/libtiff/commit/9be22b639ea69e102d3847dca4c53ef025e9527b url
- https://gitlab.com/libtiff/libtiff/-/issues/548 url
- https://security.netapp.com/advisory/ntap-20230703-0009/ url