A null pointer dereference flaw was found in Libtiff via `tif_dirinfo.c`. This issue may allow an attacker to trigger memory allocation failures through certain means, such as restricting the heap space size or injecting faults, causing a segmentation fault. This can cause an application crash, eventually leading to a denial of service.

Related CVEs

CVE-2024-7006

Key Information

GHSA ID

GHSA-r7x8-hv2q-v9r7

Published

August 12, 2024 3:30 PM

Last Modified

November 6, 2024 12:31 PM

CVSS Score

5.0 /10

Primary Ecosystem

Unknown

Primary Package

Unknown

GitHub Reviewed

✗ No

Dataset

Last updated: August 10, 2025 6:30 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.