Shahchintanh@Gmail.Com

**Name of the Vulnerable Software and Affected Versions** libtiff version 4.4.0 **Description** The issue is related to a buffer overflow in the tiffcrop utility of the libtiff library, which can be triggered by a crafted TIFF image file. This may result in an application crash, potential information disclosure, or other context-dependent impacts. The exploitation of this issue can allow an attacker to cause a denial of service. **Recommendations** For libtiff version 4.4.0, consider updating to a newer version that addresses the buffer overflow issue in the tiffcrop utility. As a temporary workaround, restrict the use of the tiffcrop utility until a patch is available. Avoid processing crafted or untrusted TIFF image files with the affected utility to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** libtiff library version 4.3.0 **Description** A heap buffer overflow in the `ExtractImageSection` function in `tiffcrop.c` allows an attacker to trigger unsafe or out of bounds memory access via a crafted TIFF image file, which could result in an application crash, potential information disclosure, or any other context-dependent impact. **Recommendations** For libtiff library version 4.3.0, consider updating to a newer version that contains a fix for this issue, as using a crafted TIFF image file could lead to application crash or information disclosure. As a temporary workaround, consider restricting the use of the `ExtractImageSection` function in `tiffcrop.c` until a patch is available. Avoid using the `tiffcrop.c` component with untrusted TIFF image files until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** libtiff versions 4.0 through 4.3.0 **Description** The issue is related to errors in pointer dereferencing in the TIFFReadDirectory() function of the LibTIFF library, specifically in the tif dirread.c component. This can be exploited by a remote attacker using a specially crafted TIFF file, potentially leading to a denial of service. The vulnerability is caused by a null source pointer being passed as an argument to the `memcpy()` function within `TIFFReadDirectory()`. **Recommendations** For libtiff versions 4.0 through 4.3.0, apply the fix available with commit 561599c for users compiling libtiff from sources. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** libtiff versions 3.9.0 through 4.3.0 **Description** The issue is related to a null source pointer being passed as an argument to the `memcpy()` function within the `TIFFFetchStripThing()` function in `tif dirread.c` in libtiff. This could lead to a Denial of Service via a crafted TIFF file. A remote attacker could exploit this issue to cause a denial of service. **Recommendations** For libtiff versions 3.9.0 through 4.3.0, users who compile libtiff from sources can apply the fix available with commit eecb0712. At the moment, there is no information about a newer version that contains a fix for this vulnerability.