CVE-2025-61143

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libtiff versions up to 4.7.1

Description The software component libtiff, specifically through the tif open.c file, contains a flaw that allows for a NULL pointer dereference. This issue could potentially lead to unexpected behavior or denial of service.

Recommendations Update libtiff to a version later than 4.7.1.

Fix

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

AZL-78308

AZL-78327

CVE-2025-61143

ECHO-3392-C943-A0D7

OESA-2026-1441

OESA-2026-1442

RHSA-2026:7504

SUSE-SU-2026:1407-1

SUSE-SU-2026:1408-1

USN-8113-1

Affected Products

Linuxmint

Ubuntu

Libtiff

CVE-2025-61143

Weakness Enumeration

Related Identifiers

Affected Products

References · 39