CVE-2025-8961

CVSS v3.1

3.3

Low

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions: LibTIFF version 4.7.0

Description: A memory corruption issue was identified in the tiffcrop.c component, specifically within the May function. The issue can be triggered locally. The exploit has been publicly disclosed.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

ALT-PU-2025-11954

ALT-PU-2025-11987

ALT-PU-2025-11989

ALT-PU-2025-12059

AZL-66423

AZL-66426

BDU:2025-13924

CVE-2025-8961

ECHO-EBC5-0965-EA5C

MGASA-2025-0252

OPENSUSE-SU-2025:15541-1

OPENSUSE-SU-2025:20049-1

SUSE-SU-2025:03345-1

SUSE-SU-2025:03346-1

SUSE-SU-2025:03348-1

SUSE-SU-2025:20971-1

SUSE-SU-2025:21009-1

SUSE-SU-2025:21032-1

SUSE-SU-2025:21037-1

SUSE-SU-2025_03345-1

SUSE-SU-2025_03346-1

SUSE-SU-2025_03348-1

USN-7783-1

Affected Products

Alt Linux

Debian

Libtiff

Linuxmint

Red Os

Suse

Ubuntu

CVE-2025-8961

Weakness Enumeration

Related Identifiers

Affected Products

References · 79