{"id":"JLSEC-2025-305","summary":"A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existen...","details":"A NULL pointer dereference in TIFFClose() is caused by a failure to open an output file (non-existent path or a path that requires permissions like /dev/null) while specifying zones.","modified":"2025-11-25T22:48:23.953377Z","published":"2025-11-25T22:18:43.603Z","upstream":["CVE-2023-3316"],"database_specific":{"license":"CC-BY-4.0","sources":[{"published":"2023-06-19T12:15:09.520Z","html_url":"https://nvd.nist.gov/vuln/detail/CVE-2023-3316","id":"CVE-2023-3316","modified":"2025-11-03T21:15:59.493Z","imported":"2025-11-25T21:56:30.660Z","url":"https://services.nvd.nist.gov/rest/json/cves/2.0?cveId=CVE-2023-3316"}]},"references":[{"type":"WEB","url":"https://gitlab.com/libtiff/libtiff/-/issues/515"},{"type":"WEB","url":"https://gitlab.com/libtiff/libtiff/-/merge_requests/468"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2023/07/msg00034.html"},{"type":"WEB","url":"https://research.jfrog.com/vulnerabilities/libtiff-nullderef-dos-xray-522144/"},{"type":"WEB","url":"https://lists.debian.org/debian-lts-announce/2025/01/msg00019.html"}],"affected":[{"package":{"name":"Libtiff_jll","ecosystem":"Julia","purl":"pkg:julia/Libtiff_jll?uuid=89763e89-9b03-5906-acba-b20f662cd828"},"ranges":[{"type":"SEMVER","events":[{"introduced":"0"},{"fixed":"4.5.1+0"}]}],"database_specific":{"source":"https://github.com/JuliaLang/SecurityAdvisories.jl/tree/generated/osv/2025/JLSEC-2025-305.json"}}],"schema_version":"1.7.3"}