CVE-2026-4775

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2026-4775
A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations, potentially causing a denial of service (application crash) or arbitrary code execution.

7.8 /10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction REQUIRED

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

References
Link Resource
https://access.redhat.com/errata/RHSA-2026:12265
https://access.redhat.com/errata/RHSA-2026:12271
https://access.redhat.com/errata/RHSA-2026:14929
https://access.redhat.com/errata/RHSA-2026:16055
https://access.redhat.com/errata/RHSA-2026:19150
https://access.redhat.com/errata/RHSA-2026:19363
https://access.redhat.com/errata/RHSA-2026:19585
https://access.redhat.com/errata/RHSA-2026:19586
https://access.redhat.com/errata/RHSA-2026:19604
https://access.redhat.com/errata/RHSA-2026:19608
https://access.redhat.com/errata/RHSA-2026:19609
https://access.redhat.com/errata/RHSA-2026:19657
https://access.redhat.com/errata/RHSA-2026:19659
https://access.redhat.com/errata/RHSA-2026:19702
https://access.redhat.com/errata/RHSA-2026:20583
https://access.redhat.com/errata/RHSA-2026:20585
https://access.redhat.com/errata/RHSA-2026:20591
https://access.redhat.com/errata/RHSA-2026:20592
https://access.redhat.com/errata/RHSA-2026:24992
https://access.redhat.com/errata/RHSA-2026:25096
https://access.redhat.com/security/cve/CVE-2026-4775 Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=2450768 Issue Tracking Third Party Advisory
https://lists.debian.org/debian-lts-announce/2026/04/msg00016.html Mailing List Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:libtiff:libtiff:-:*:*:*:*:*:*:*
cpe:2.3:a:redhat:hardened_images:-:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
History

10 Jun 2026, 18:17

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:25096 -

10 Jun 2026, 08:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:24992 -

26 May 2026, 09:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:20583 -
  • () https://access.redhat.com/errata/RHSA-2026:20585 -
  • () https://access.redhat.com/errata/RHSA-2026:20591 -
  • () https://access.redhat.com/errata/RHSA-2026:20592 -

20 May 2026, 17:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19604 -
  • () https://access.redhat.com/errata/RHSA-2026:19659 -
  • () https://access.redhat.com/errata/RHSA-2026:19702 -

20 May 2026, 14:17

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19657 -

20 May 2026, 13:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19608 -
  • () https://access.redhat.com/errata/RHSA-2026:19609 -

20 May 2026, 12:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19585 -
  • () https://access.redhat.com/errata/RHSA-2026:19586 -

19 May 2026, 23:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19363 -

19 May 2026, 22:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:19150 -

11 May 2026, 22:22

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:16055 -

07 May 2026, 22:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:14929 -

30 Apr 2026, 15:16

Type Values Removed Values Added
References
  • () https://access.redhat.com/errata/RHSA-2026:12265 -
  • () https://access.redhat.com/errata/RHSA-2026:12271 -

21 Apr 2026, 16:34

Type Values Removed Values Added
CPE cpe:2.3:o:redhat:enterprise_linux:10.0:*:*:*:*:*:*:*
cpe:2.3:a:libtiff:libtiff:-:*:*:*:*:*:*:*
cpe:2.3:a:redhat:hardened_images:-:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
References () https://access.redhat.com/security/cve/CVE-2026-4775 - () https://access.redhat.com/security/cve/CVE-2026-4775 - Third Party Advisory
References () https://bugzilla.redhat.com/show_bug.cgi?id=2450768 - () https://bugzilla.redhat.com/show_bug.cgi?id=2450768 - Issue Tracking, Third Party Advisory
References () https://lists.debian.org/debian-lts-announce/2026/04/msg00016.html - () https://lists.debian.org/debian-lts-announce/2026/04/msg00016.html - Mailing List, Third Party Advisory
First Time Redhat
Redhat enterprise Linux
Libtiff
Debian debian Linux
Redhat hardened Images
Debian
Libtiff libtiff

17 Apr 2026, 17:17

Type Values Removed Values Added
References
  • () https://lists.debian.org/debian-lts-announce/2026/04/msg00016.html -
Summary
  • (es) Se encontró un fallo en la biblioteca libtiff. Un atacante remoto podría explotar una vulnerabilidad de desbordamiento de entero con signo en la función putcontig8bitYCbCr44tile al proporcionar un archivo TIFF especialmente diseñado. Este fallo puede llevar a una escritura fuera de límites en el heap debido a cálculos incorrectos del puntero de memoria, potencialmente causando una denegación de servicio (caída de la aplicación) o ejecución de código arbitrario.

24 Mar 2026, 15:16

Type Values Removed Values Added
New CVE
Information

Published : 2026-03-24 15:16

Updated : 2026-06-10 18:17

NVD link : CVE-2026-4775

Mitre link : CVE-2026-4775

CVE.ORG link : CVE-2026-4775

JSON object : View

Products Affected

redhat

  • enterprise_linux
  • hardened_images

debian

  • debian_linux

libtiff

  • libtiff
CWE
CWE-190

Integer Overflow or Wraparound