CVE-2025-9165

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2025-9165
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2025-9165.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2025-9165
Downstream
Related
Published
2025-08-19T20:15:37Z
Modified
2025-10-18T06:55:25.407135Z
Severity
  • 2.5 (Low) CVSS_V3 - CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L CVSS Calculator
Summary
[none]
Details

A flaw has been found in LibTIFF 4.7.0. This affects the function TIFFmallocExt/TIFFCheckRealloc/TIFFHashSetNew/InitCCITTFax3 of the file tools/tiffcmp.c of the component tiffcmp. Executing manipulation can lead to memory leak. The attack is restricted to local execution. This attack is characterized by high complexity. It is indicated that the exploitability is difficult. The exploit has been published and may be used. There is ongoing doubt regarding the real existence of this vulnerability. This patch is called ed141286a37f6e5ddafb5069347ff5d587e7a4e0. It is best practice to apply a patch to resolve this issue. A researcher disputes the security impact of this issue, because "this is a memory leak on a command line tool that is about to exit anyway". In the reply the project maintainer declares this issue as "a simple 'bug' when leaving the command line tool and (...) not a security issue at all".

Database specific 
{
    "isDisputed": true
}
References

Affected packages

Git / gitlab.com/libtiff/libtiff

Affected ranges

Type
GIT
Repo
https://gitlab.com/libtiff/libtiff
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
ed141286a37f6e5ddafb5069347ff5d587e7a4e0

Affected versions

v3.*

v3.5.3
v3.5.4
v3.5.5
v3.5.7
v3.6.0
v3.6.0beta2
v3.6.1
v3.7.0
v3.7.0alpha
v3.7.0beta
v3.7.0beta2
v3.7.1
v3.7.2
v3.7.3
v3.7.4
v3.8.0
v3.8.1
v3.8.2

v4.*

v4.0.0
v4.0.0alpha
v4.0.0alpha4
v4.0.0alpha5
v4.0.0alpha6
v4.0.0beta7
v4.0.1
v4.0.10
v4.0.2
v4.0.3
v4.0.4
v4.0.4beta
v4.0.5
v4.0.6
v4.0.7
v4.0.8
v4.0.9
v4.1.0
v4.2.0
v4.3.0
v4.3.0rc1
v4.4.0
v4.4.0rc1
v4.5.0
v4.5.0rc1
v4.5.0rc2
v4.5.0rc3
v4.5.1
v4.5.1rc1
v4.5.1rc2
v4.5.1rc3
v4.6.0
v4.6.0rc1
v4.6.0rc2
v4.7.0
v4.7.0rc1
v4.7.0rc2

Database specific

vanir_signatures

[
    {
        "source": "https://gitlab.com/libtiff/libtiff@ed141286a37f6e5ddafb5069347ff5d587e7a4e0",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Function",
        "digest": {
            "function_hash": "251690999601998792546753950299123151700",
            "length": 1053.0
        },
        "target": {
            "file": "tools/tiffcmp.c",
            "function": "main"
        },
        "id": "CVE-2025-9165-25718b33"
    },
    {
        "source": "https://gitlab.com/libtiff/libtiff@ed141286a37f6e5ddafb5069347ff5d587e7a4e0",
        "deprecated": false,
        "signature_version": "v1",
        "signature_type": "Line",
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "170162071310387623261300925430405511624",
                "103360820402062354451464127340711634612",
                "3529785709387732422915513322863341599",
                "142420901832490694740572761201644603745",
                "91081819883984036903200986741417687775"
            ]
        },
        "target": {
            "file": "tools/tiffcmp.c"
        },
        "id": "CVE-2025-9165-7a1b7ddc"
    }
]