Fluid Attacks Database

Description

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	tiff	=4.2.0-1 \|\| =4.2.0-1+deb11u1 \|\| =4.2.0-1+deb11u2 \|\| =4.2.0-1+deb11u3 \|\| =4.2.0-1+deb11u4 \|\| =4.2.0-1+deb11u5 \|\| =4.2.0-1+deb11u6 \|\| =4.2.0-1+deb11u7 \|\| >=0 <4.2.0-1+deb11u8	4.2.0-1+deb11u8
rpm rhel8	libtiff	<0:4.0.9-37.el8_10	0:4.0.9-37.el8_10
rpm rhel9	libtiff	<0:4.4.0-18.el9_8	0:4.4.0-18.el9_8
rpm rhel7	libtiff	-	-
rpm rhel8	mingw-libtiff	<0:4.0.9-4.el8_10	0:4.0.9-4.el8_10
debian 13	tiff	=4.7.0-3 \|\| =4.7.0-3+deb13u1 \|\| >=0 <4.7.0-3+deb13u2	4.7.0-3+deb13u2
debian 12	tiff	=4.5.0-6 \|\| =4.5.0-6+deb12u1 \|\| =4.5.0-6+deb12u2 \|\| =4.5.0-6+deb12u3 \|\| >=0 <4.5.0-6+deb12u4	4.5.0-6+deb12u4
debian 14	tiff	=4.7.0-3 \|\| =4.7.0-4 \|\| =4.7.0-5 \|\| =4.7.1-1 \|\| >=0 <4.7.1-2	4.7.1-2
rpm rhel7	compat-libtiff3	-	-
rpm rhel8	compat-libtiff3	<0:3.9.4-15.el8_10	0:3.9.4-15.el8_10

1-10 of 17

Aliases

1. CVE-2026-47752. NVD-2026-47753. OSV-DEBIAN-2026-47754. OSV-2026-47755. SECURITY-TRACKER-CVE-2026-4775

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.