Chintan Shah

**Name of the Vulnerable Software and Affected Versions** libtiff version 4.4.0 **Description** The issue is related to a buffer overflow in the tiffcrop utility of the libtiff library, which can be triggered by a crafted TIFF image file. This may result in an application crash, potential information disclosure, or other context-dependent impacts. The exploitation of this issue can allow an attacker to cause a denial of service. **Recommendations** For libtiff version 4.4.0, consider updating to a newer version that addresses the buffer overflow issue in the tiffcrop utility. As a temporary workaround, restrict the use of the tiffcrop utility until a patch is available. Avoid processing crafted or untrusted TIFF image files with the affected utility to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libtiff versions 4.0 through 4.3.0 **Description** The issue is related to errors in pointer dereferencing in the TIFFReadDirectory() function of the LibTIFF library, specifically in the tif dirread.c component. This can be exploited by a remote attacker using a specially crafted TIFF file, potentially leading to a denial of service. The vulnerability is caused by a null source pointer being passed as an argument to the `memcpy()` function within `TIFFReadDirectory()`. **Recommendations** For libtiff versions 4.0 through 4.3.0, apply the fix available with commit 561599c for users compiling libtiff from sources. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libtiff versions 3.9.0 through 4.3.0 **Description** The issue is related to a null source pointer being passed as an argument to the `memcpy()` function within the `TIFFFetchStripThing()` function in `tif dirread.c` in libtiff. This could lead to a Denial of Service via a crafted TIFF file. A remote attacker could exploit this issue to cause a denial of service. **Recommendations** For libtiff versions 3.9.0 through 4.3.0, users who compile libtiff from sources can apply the fix available with commit eecb0712. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libEMF (aka ECMA-234 Metafile Library) versions through 1.0.11 **Description** The issue allows for denial of service. **Recommendations** For versions through 1.0.11, update to a version later than 1.0.11 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libEMF (aka ECMA-234 Metafile Library) versions through 1.0.11 **Description** The issue allows a use-after-free, which is a type of memory corruption bug that can lead to unexpected behavior or crashes. **Recommendations** For libEMF (aka ECMA-234 Metafile Library) versions through 1.0.11, update to a version later than 1.0.11 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libEMF (aka ECMA-234 Metafile Library) versions 1.0.11 and earlier **Description** The issue allows for denial of service. **Recommendations** For libEMF (aka ECMA-234 Metafile Library) versions 1.0.11 and earlier, update to a version later than 1.0.11 to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** libEMF (aka ECMA-234 Metafile Library) versions 1.0.11 and earlier **Description** The issue allows out-of-bounds memory access. **Recommendations** For libEMF (aka ECMA-234 Metafile Library) versions 1.0.11 and earlier, at the moment, there is no information about a newer version that contains a fix for this issue.