High severity7.5NVD Advisory· Published Jan 25, 2024· Updated May 12, 2026
CVE-2023-52356
CVE-2023-52356
Description
A segment fault (SEGV) flaw was found in libtiff that could be triggered by passing a crafted tiff file to the TIFFReadRGBATileExt() API. This flaw allows a remote attacker to cause a heap-buffer overflow, leading to a denial of service.
Affected products
3cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
37- gitlab.com/libtiff/libtiff/-/issues/622nvdIssue TrackingPatch
- access.redhat.com/security/cve/CVE-2023-52356nvdThird Party Advisory
- bugzilla.redhat.com/show_bug.cginvdIssue TrackingThird Party Advisory
- seclists.org/fulldisclosure/2024/Jul/16nvd
- seclists.org/fulldisclosure/2024/Jul/17nvd
- seclists.org/fulldisclosure/2024/Jul/18nvd
- seclists.org/fulldisclosure/2024/Jul/19nvd
- seclists.org/fulldisclosure/2024/Jul/20nvd
- seclists.org/fulldisclosure/2024/Jul/21nvd
- seclists.org/fulldisclosure/2024/Jul/22nvd
- seclists.org/fulldisclosure/2024/Jul/23nvd
- access.redhat.com/errata/RHSA-2024:5079nvd
- access.redhat.com/errata/RHSA-2025:20801nvd
- access.redhat.com/errata/RHSA-2025:21994nvd
- access.redhat.com/errata/RHSA-2025:23078nvd
- access.redhat.com/errata/RHSA-2025:23079nvd
- access.redhat.com/errata/RHSA-2025:23080nvd
- access.redhat.com/errata/RHSA-2026:16174nvd
- access.redhat.com/errata/RHSA-2026:3461nvd
- access.redhat.com/errata/RHSA-2026:3462nvd
- access.redhat.com/errata/RHSA-2026:5958nvd
- access.redhat.com/errata/RHSA-2026:7081nvd
- access.redhat.com/errata/RHSA-2026:7304nvd
- access.redhat.com/errata/RHSA-2026:7335nvd
- access.redhat.com/errata/RHSA-2026:8746nvd
- access.redhat.com/errata/RHSA-2026:8747nvd
- access.redhat.com/errata/RHSA-2026:8748nvd
- lists.debian.org/debian-lts-announce/2024/03/msg00011.htmlnvd
- lists.debian.org/debian-lts-announce/2025/01/msg00019.htmlnvd
- support.apple.com/kb/HT214116nvd
- support.apple.com/kb/HT214117nvd
- support.apple.com/kb/HT214118nvd
- support.apple.com/kb/HT214119nvd
- support.apple.com/kb/HT214120nvd
- support.apple.com/kb/HT214122nvd
- support.apple.com/kb/HT214123nvd
- support.apple.com/kb/HT214124nvd
News mentions
0No linked articles in our index yet.