{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","type":"deb","namespace":"debian","name":"tiff","version":"4.2.0-1+deb11u6","qualifiers":{"distro":"trixie"},"subpath":"","is_vulnerable":false,"next_non_vulnerable_version":"0","latest_non_vulnerable_version":"4.7.1-2","affected_by_vulnerabilities":[],"fixing_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15609?format=json","vulnerability_id":"VCID-47nw-t1jf-qyhu","summary":"","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3618","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3618"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040945","reference_id":"1040945","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1040945"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2023-3618","reference_id":"CVE-2023-3618","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2023-3618"},{"reference_url":"https://support.apple.com/kb/HT214036","reference_id":"HT214036","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/"}],"url":"https://support.apple.com/kb/HT214036"},{"reference_url":"https://support.apple.com/kb/HT214037","reference_id":"HT214037","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/"}],"url":"https://support.apple.com/kb/HT214037"},{"reference_url":"https://support.apple.com/kb/HT214038","reference_id":"HT214038","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/"}],"url":"https://support.apple.com/kb/HT214038"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html","reference_id":"msg00034.html","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230824-0012/","reference_id":"ntap-20230824-0012","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230824-0012/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2215865","reference_id":"show_bug.cgi?id=2215865","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-09-26T19:26:00Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2215865"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/105595?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4jwu-uwdh-h7e4"},{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-7jfs-vz5x-vfer"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-gn6q-ttsm-suex"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105679?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105593?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-tr52-wx1b-tfab"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105681?format=json","purl":"pkg:deb/debian/tiff@4.5.1~rc3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.1~rc3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105597?format=json","purl":"pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-z3np-bczx-aye8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105596?format=json","purl":"pkg:deb/debian/tiff@4.7.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie"}],"aliases":["CVE-2023-3618"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-47nw-t1jf-qyhu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15280?format=json","vulnerability_id":"VCID-4cs2-s5e9-s7bd","summary":"","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26965","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26965"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"7.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/472","reference_id":"472","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/472"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html","reference_id":"msg00034.html","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230706-0009/","reference_id":"ntap-20230706-0009","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-01-06T16:22:37Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230706-0009/"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/105595?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4jwu-uwdh-h7e4"},{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-7jfs-vz5x-vfer"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-gn6q-ttsm-suex"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105679?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105593?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-tr52-wx1b-tfab"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105681?format=json","purl":"pkg:deb/debian/tiff@4.5.1~rc3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.1~rc3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105597?format=json","purl":"pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-z3np-bczx-aye8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105596?format=json","purl":"pkg:deb/debian/tiff@4.7.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie"}],"aliases":["CVE-2023-26965"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-4cs2-s5e9-s7bd"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15522?format=json","vulnerability_id":"VCID-6pe4-73u8-7kfa","summary":"","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3316","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-3316"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/468","reference_id":"468","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/468"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/515","reference_id":"515","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/issues/515"},{"reference_url":"https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/","reference_id":"libtiff-nullderef-dos-xray-522144","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/"}],"url":"https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html","reference_id":"msg00034.html","reference_type":"","scores":[{"value":"5.9","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-12-09T21:09:26Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/105595?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4jwu-uwdh-h7e4"},{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-7jfs-vz5x-vfer"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-gn6q-ttsm-suex"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105676?format=json","purl":"pkg:deb/debian/tiff@4.5.0-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105593?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-tr52-wx1b-tfab"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105597?format=json","purl":"pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-z3np-bczx-aye8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105596?format=json","purl":"pkg:deb/debian/tiff@4.7.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie"}],"aliases":["CVE-2023-3316"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6pe4-73u8-7kfa"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15370?format=json","vulnerability_id":"VCID-c1ee-8675-x7af","summary":"","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2908","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2908"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/479","reference_id":"479","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/479"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/commit/9bd48f0dbd64fb94dc2b5b05238fde0bfdd4ff3f","reference_id":"9bd48f0dbd64fb94dc2b5b05238fde0bfdd4ff3f","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/commit/9bd48f0dbd64fb94dc2b5b05238fde0bfdd4ff3f"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9","reference_id":"cpe:/o:redhat:enterprise_linux:9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:9"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2023-2908","reference_id":"CVE-2023-2908","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2023-2908"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html","reference_id":"msg00034.html","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"},{"reference_url":"https://security.netapp.com/advisory/ntap-20230731-0004/","reference_id":"ntap-20230731-0004","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/"}],"url":"https://security.netapp.com/advisory/ntap-20230731-0004/"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2218830","reference_id":"show_bug.cgi?id=2218830","reference_type":"","scores":[{"value":"5.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2024-10-28T13:04:03Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2218830"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/105595?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4jwu-uwdh-h7e4"},{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-7jfs-vz5x-vfer"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-gn6q-ttsm-suex"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105679?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105593?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-tr52-wx1b-tfab"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105681?format=json","purl":"pkg:deb/debian/tiff@4.5.1~rc3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.1~rc3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105597?format=json","purl":"pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-z3np-bczx-aye8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105596?format=json","purl":"pkg:deb/debian/tiff@4.7.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie"}],"aliases":["CVE-2023-2908"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-c1ee-8675-x7af"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/22279?format=json","vulnerability_id":"VCID-dfdr-43hc-ekeh","summary":"","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7006","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-7006"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078648","reference_id":"1078648","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1078648"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.2::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.2::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.2::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10","reference_id":"cpe:/o:redhat:enterprise_linux:10","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2024-7006","reference_id":"CVE-2024-7006","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2024-7006"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:6360","reference_id":"RHSA-2024:6360","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:6360"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8833","reference_id":"RHSA-2024:8833","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8833"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:8914","reference_id":"RHSA-2024:8914","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:8914"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302996","reference_id":"show_bug.cgi?id=2302996","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:Y/T:P/P:M/B:A/M:M/D:T/2025-06-03T02:10:18Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2302996"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/105595?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4jwu-uwdh-h7e4"},{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-7jfs-vz5x-vfer"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-gn6q-ttsm-suex"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105679?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105593?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-tr52-wx1b-tfab"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105690?format=json","purl":"pkg:deb/debian/tiff@4.5.1%2Bgit230720-5?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.1%252Bgit230720-5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105597?format=json","purl":"pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-z3np-bczx-aye8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105596?format=json","purl":"pkg:deb/debian/tiff@4.7.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie"}],"aliases":["CVE-2024-7006"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-dfdr-43hc-ekeh"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/15281?format=json","vulnerability_id":"VCID-s4gt-p38v-tqa3","summary":"","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26966","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26966"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"4.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/473","reference_id":"473","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/473"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/530","reference_id":"530","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/issues/530"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html","reference_id":"msg00034.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T15:42:13Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/105595?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4jwu-uwdh-h7e4"},{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-7jfs-vz5x-vfer"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-gn6q-ttsm-suex"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105679?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105593?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-tr52-wx1b-tfab"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105681?format=json","purl":"pkg:deb/debian/tiff@4.5.1~rc3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.1~rc3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105597?format=json","purl":"pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-z3np-bczx-aye8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105596?format=json","purl":"pkg:deb/debian/tiff@4.7.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie"}],"aliases":["CVE-2023-26966"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s4gt-p38v-tqa3"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/16189?format=json","vulnerability_id":"VCID-u4d2-t9tr-k7bx","summary":"","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52356","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-52356"},{"reference_url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml","reference_id":"","reference_type":"","scores":[{"value":"5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:N/A:H"}],"url":"https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml"},{"reference_url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061524","reference_id":"1061524","reference_type":"","scores":[],"url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1061524"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/546","reference_id":"546","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/546"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/622","reference_id":"622","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/issues/622"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9","reference_id":"cpe:/a:redhat:ai_inference_server:3.2::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.2::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.3::el9","reference_id":"cpe:/a:redhat:ai_inference_server:3.3::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:ai_inference_server:3.3::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9","reference_id":"cpe:/a:redhat:discovery:2::el9","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:discovery:2::el9"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:8::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb","reference_id":"cpe:/a:redhat:enterprise_linux:8::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:8::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream","reference_id":"cpe:/a:redhat:enterprise_linux:9::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb","reference_id":"cpe:/a:redhat:enterprise_linux:9::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:enterprise_linux:9::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream","reference_id":"cpe:/a:redhat:rhel_eus:9.6::appstream","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::appstream"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb","reference_id":"cpe:/a:redhat:rhel_eus:9.6::crb","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/a:redhat:rhel_eus:9.6::crb"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1","reference_id":"cpe:/o:redhat:enterprise_linux:10.1","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:10.1"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6","reference_id":"cpe:/o:redhat:enterprise_linux:6","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:6"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7","reference_id":"cpe:/o:redhat:enterprise_linux:7","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:7"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8","reference_id":"cpe:/o:redhat:enterprise_linux:8","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux:8"},{"reference_url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0","reference_id":"cpe:/o:redhat:enterprise_linux_eus:10.0","reference_type":"","scores":[],"url":"https://nvd.nist.gov/vuln/search/results?adv_search=true&isCpeNameSearch=true&query=cpe:/o:redhat:enterprise_linux_eus:10.0"},{"reference_url":"https://access.redhat.com/security/cve/CVE-2023-52356","reference_id":"CVE-2023-52356","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/security/cve/CVE-2023-52356"},{"reference_url":"https://access.redhat.com/errata/RHSA-2024:5079","reference_id":"RHSA-2024:5079","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2024:5079"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:20801","reference_id":"RHSA-2025:20801","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:20801"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:21994","reference_id":"RHSA-2025:21994","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:21994"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23078","reference_id":"RHSA-2025:23078","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:23078"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23079","reference_id":"RHSA-2025:23079","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:23079"},{"reference_url":"https://access.redhat.com/errata/RHSA-2025:23080","reference_id":"RHSA-2025:23080","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2025:23080"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:16174","reference_id":"RHSA-2026:16174","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:16174"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:25096","reference_id":"RHSA-2026:25096","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:25096"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3461","reference_id":"RHSA-2026:3461","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:3461"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:3462","reference_id":"RHSA-2026:3462","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:3462"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:5958","reference_id":"RHSA-2026:5958","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:5958"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7081","reference_id":"RHSA-2026:7081","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:7081"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7304","reference_id":"RHSA-2026:7304","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:7304"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:7335","reference_id":"RHSA-2026:7335","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:7335"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8746","reference_id":"RHSA-2026:8746","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:8746"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8747","reference_id":"RHSA-2026:8747","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:8747"},{"reference_url":"https://access.redhat.com/errata/RHSA-2026:8748","reference_id":"RHSA-2026:8748","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://access.redhat.com/errata/RHSA-2026:8748"},{"reference_url":"https://bugzilla.redhat.com/show_bug.cgi?id=2251344","reference_id":"show_bug.cgi?id=2251344","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H"},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:P/P:M/B:A/M:M/D:T/2024-01-28T01:27:48Z/"}],"url":"https://bugzilla.redhat.com/show_bug.cgi?id=2251344"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/105595?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4jwu-uwdh-h7e4"},{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-7jfs-vz5x-vfer"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-gn6q-ttsm-suex"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105679?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105593?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-tr52-wx1b-tfab"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105685?format=json","purl":"pkg:deb/debian/tiff@4.5.1%2Bgit230720-4?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.1%252Bgit230720-4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105597?format=json","purl":"pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-z3np-bczx-aye8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105596?format=json","purl":"pkg:deb/debian/tiff@4.7.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie"}],"aliases":["CVE-2023-52356"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-u4d2-t9tr-k7bx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/129516?format=json","vulnerability_id":"VCID-vhyw-6vwe-3ygd","summary":"libtiff 4.5.0 is vulnerable to Buffer Overflow via /libtiff/tools/tiffcrop.c:8499. Incorrect updating of buffer size after rotateImage() in tiffcrop cause heap-buffer-overflow and SEGV.","references":[{"reference_url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25433","reference_id":"","reference_type":"","scores":[],"url":"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-25433"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/467","reference_id":"467","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/467"},{"reference_url":"https://gitlab.com/libtiff/libtiff/-/issues/520","reference_id":"520","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/"}],"url":"https://gitlab.com/libtiff/libtiff/-/issues/520"},{"reference_url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html","reference_id":"msg00034.html","reference_type":"","scores":[{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:N/T:P/P:M/B:A/M:M/D:T/2024-11-27T14:30:31Z/"}],"url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/105595?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u5?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4jwu-uwdh-h7e4"},{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-7jfs-vz5x-vfer"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-gn6q-ttsm-suex"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u5%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105680?format=json","purl":"pkg:deb/debian/tiff@4.2.0-1%2Bdeb11u6?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105679?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105593?format=json","purl":"pkg:deb/debian/tiff@4.5.0-6%2Bdeb12u4?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-4v4g-5xxj-xfe6"},{"vulnerability":"VCID-5qf8-uyqp-2ffp"},{"vulnerability":"VCID-7cr2-hq55-s3hv"},{"vulnerability":"VCID-83nx-fske-p7dn"},{"vulnerability":"VCID-8agq-7c7u-ckc3"},{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-tr52-wx1b-tfab"},{"vulnerability":"VCID-vb4a-g5px-1kcw"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-xt24-ubz3-c7ga"},{"vulnerability":"VCID-z3np-bczx-aye8"},{"vulnerability":"VCID-z7ub-xgph-cbgm"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.0-6%252Bdeb12u4%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105681?format=json","purl":"pkg:deb/debian/tiff@4.5.1~rc3-1?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.5.1~rc3-1%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105597?format=json","purl":"pkg:deb/debian/tiff@4.7.0-3%2Bdeb13u2?distro=trixie","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-aa7d-drzk-n7bu"},{"vulnerability":"VCID-anww-bk93-fudw"},{"vulnerability":"VCID-dmyh-1gh9-hbhy"},{"vulnerability":"VCID-t4em-r15a-hqar"},{"vulnerability":"VCID-vuwh-xcag-5qgj"},{"vulnerability":"VCID-z3np-bczx-aye8"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.0-3%252Bdeb13u2%3Fdistro=trixie"},{"url":"http://public2.vulnerablecode.io/api/packages/105596?format=json","purl":"pkg:deb/debian/tiff@4.7.1-2?distro=trixie","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.7.1-2%3Fdistro=trixie"}],"aliases":["CVE-2023-25433"],"risk_score":null,"exploitability":null,"weighted_severity":null,"resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vhyw-6vwe-3ygd"}],"risk_score":null,"resource_url":"http://public2.vulnerablecode.io/packages/pkg:deb/debian/tiff@4.2.0-1%252Bdeb11u6%3Fdistro=trixie"}