Sign In

CVE-2026-4775

ADVISORY - nist

Summary

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution.

Common Weakness Enumeration (CWE)

ADVISORY - nist

CWE-190

Integer Overflow or Wraparound

ADVISORY - redhat

CWE-190

Integer Overflow or Wraparound

Impacted images

Advisories
Sign in to Docker Scout

See which of your images are affected by this CVE and how to fix them by signing into Docker Scout.

Sign in