CVE-2023-3618

Name	CVE-2023-3618
Description	A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tif_fax3.c, resulting in a denial of service.
Source	CVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
References	DLA-3513-1, ELA-909-1
Debian Bugs	1040945

Vulnerable and fixed packages

The table below lists information on source packages.

Source Package	Release	Version	Status
tiff (PTS)	jessie, jessie (lts)	4.0.3-12.3+deb8u16	fixed
	stretch (security)	4.0.8-2+deb9u8	vulnerable
	stretch (lts), stretch	4.0.8-2+deb9u11	fixed
	buster	4.1.0+git191117-2~deb10u4	vulnerable
	buster (security)	4.1.0+git191117-2~deb10u9	fixed
	bullseye (security), bullseye	4.2.0-1+deb11u5	vulnerable
	bookworm (security), bookworm	4.5.0-6+deb12u1	vulnerable
	sid, trixie	4.5.1+git230720-4	fixed

The information below is based on the following data on fixed versions.

Package	Type	Release	Fixed Version	Origin	Debian Bugs
tiff	source	jessie	4.0.3-12.3+deb8u16	ELA-909-1
tiff	source	stretch	4.0.8-2+deb9u11	ELA-909-1
tiff	source	buster	4.1.0+git191117-2~deb10u8	DLA-3513-1
tiff	source	(unstable)	4.5.1~rc3-1		1040945

Notes

[bookworm] - tiff <no-dsa> (Minor issue)
[bullseye] - tiff <no-dsa> (Minor issue)
https://gitlab.com/libtiff/libtiff/-/issues/529
https://gitlab.com/libtiff/libtiff/-/commit/b5c7d4c4e03333ac16b5cfb11acaaeaa493334f8 (v4.5.1rc1)