CVE-2025-8851

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-8851
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-8851.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-8851
Downstream
Related
Published
2025-08-11T14:15:27Z
Modified
2025-10-31T22:22:45.142998Z
Severity
  • 4.8 (Medium) CVSS_V4 - CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X CVSS Calculator
Summary
[none]
Details

A vulnerability was determined in LibTIFF up to 4.5.1. Affected by this issue is the function readSeparateStripsetoBuffer of the file tools/tiffcrop.c of the component tiffcrop. The manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The patch is identified as 8a7a48d7a645992ca83062b3a1873c951661e2b3. It is recommended to apply a patch to fix this issue.

References

Affected packages

Git / gitlab.com/libtiff/libtiff

Affected ranges

Type
GIT
Repo
https://gitlab.com/libtiff/libtiff
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
8a7a48d7a645992ca83062b3a1873c951661e2b3

Affected versions

v3.*

v3.5.3
v3.5.4
v3.5.5
v3.5.7
v3.6.0
v3.6.0beta2
v3.6.1
v3.7.0
v3.7.0alpha
v3.7.0beta
v3.7.0beta2
v3.7.1
v3.7.2
v3.7.3
v3.7.4
v3.8.0
v3.8.1
v3.8.2

v4.*

v4.0.0
v4.0.0alpha
v4.0.0alpha4
v4.0.0alpha5
v4.0.0alpha6
v4.0.0beta7
v4.0.1
v4.0.10
v4.0.2
v4.0.3
v4.0.4
v4.0.4beta
v4.0.5
v4.0.6
v4.0.7
v4.0.8
v4.0.9
v4.1.0
v4.2.0
v4.3.0
v4.3.0rc1
v4.4.0
v4.4.0rc1
v4.5.0
v4.5.0rc1
v4.5.0rc2
v4.5.0rc3
v4.5.1
v4.5.1rc1
v4.5.1rc2
v4.5.1rc3
v4.6.0
v4.6.0rc1
v4.6.0rc2

Database specific

vanir_signatures

[
    {
        "id": "CVE-2025-8851-28bcd593",
        "signature_type": "Function",
        "digest": {
            "length": 3979.0,
            "function_hash": "125298522252730818421245691744552631017"
        },
        "target": {
            "function": "readSeparateStripsIntoBuffer",
            "file": "tools/tiffcrop.c"
        },
        "source": "https://gitlab.com/libtiff/libtiff@8a7a48d7a645992ca83062b3a1873c951661e2b3",
        "signature_version": "v1",
        "deprecated": false
    },
    {
        "id": "CVE-2025-8851-3452ee39",
        "signature_type": "Function",
        "digest": {
            "length": 6924.0,
            "function_hash": "34022840763250157474568839397085064740"
        },
        "target": {
            "function": "computeInputPixelOffsets",
            "file": "tools/tiffcrop.c"
        },
        "source": "https://gitlab.com/libtiff/libtiff@8a7a48d7a645992ca83062b3a1873c951661e2b3",
        "signature_version": "v1",
        "deprecated": false
    },
    {
        "id": "CVE-2025-8851-91eb4ae2",
        "signature_type": "Line",
        "digest": {
            "line_hashes": [
                "36454668606399299175254352562079297732",
                "86593624022343917326464537104057332182",
                "297816011729360198695957399470278816102",
                "123861256728091389215896363249692244411",
                "71546548977246555874571454000912003165",
                "94270534225520452429230680293087787513",
                "53691178128712445025392756347489050518",
                "79977354643059646240846593326149536825",
                "316069950000112904847962696635819942549",
                "139935833162598263634426386551541950132",
                "147554800457837394638369826680900780974",
                "209794363378237830095653664224621081086",
                "168178383345132606674997683275615763509",
                "15171199821626497939431793220763544586",
                "92829902071770722406479005335305883946",
                "276141438418785306018475415495915166670",
                "63487499956538644684707008804100484765",
                "41288238668761617364167757964345005628",
                "283471126993750564820383235345562369159",
                "211905676596364823751247821756842415302",
                "120661997554235405725421301863932165211",
                "79884091891383752394662996787880551727",
                "84885903517656229598501670325406677430"
            ],
            "threshold": 0.9
        },
        "target": {
            "file": "tools/tiffcrop.c"
        },
        "source": "https://gitlab.com/libtiff/libtiff@8a7a48d7a645992ca83062b3a1873c951661e2b3",
        "signature_version": "v1",
        "deprecated": false
    },
    {
        "id": "CVE-2025-8851-97860ee1",
        "signature_type": "Function",
        "digest": {
            "length": 5283.0,
            "function_hash": "29294408729669865357160709214619444427"
        },
        "target": {
            "function": "computeOutputPixelOffsets",
            "file": "tools/tiffcrop.c"
        },
        "source": "https://gitlab.com/libtiff/libtiff@8a7a48d7a645992ca83062b3a1873c951661e2b3",
        "signature_version": "v1",
        "deprecated": false
    }
]