Libtiff Vulnerability Allows Memory Corruption in TIFF Image Processing
CVE-2025-9900

8.8HIGH

Key Information:

Vendor

Red Hat
Status
Red Hat Enterprise Linux 10
Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 8
Vendor
CVE Published:
23 September 2025

What is CVE-2025-9900?

A security flaw in the Libtiff library enables a write-what-where condition that can be exploited through specially crafted TIFF image files. By manipulating the image's metadata to include an unusually large height value, attackers can deceive the library into writing malicious color data to arbitrary memory locations. This memory corruption poses risks including application crashes and may allow arbitrary code execution, potentially compromising user permissions.

References

https://access.redhat.com/security/cve/CVE-2025-9900
vdb-entryx_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=2392784
issue-trackingx_refsource_REDHAT
https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Wri...

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Red Hat would like to thank Gareth C (AnchorSec Ltd.) for reporting this issue.
JSON
.
CVE-2025-9900 : Libtiff Vulnerability Allows Memory Corruption in TIFF Image Processing