CVE-2025-8534 | libtiff 4.6.0 tiff2ps tools/tiff2ps.c PS_Lvl2page null pointer dereference (Issue 718)

A vulnerability classified as problematic was found in libtiff 4.6.0. This vulnerability affects the function PS_Lvl2page of the file tools/tiff2ps.c of the component tiff2ps. The manipulation leads to null pointer dereference.

This vulnerability was named CVE-2025-8534. It is possible to launch the attack on the local host. Furthermore, there is an exploit available.

It is recommended to apply a patch to fix this issue.

One of the maintainers explains, that “[t]his error only occurs if DEFER_STRILE_LOAD (defer-strile-load:BOOL=ON) or TIFFOpen( .. “rD”) option is used.”

CVE-2025-8534 | libtiff 4.6.0 tiff2ps tools/tiff2ps.c PS_Lvl2page null pointer dereference (Issue 718)

Post correlati

CVE-2024-9818 | SourceCodester Online Veterinary Appointment System 1.0 manage_category.php id sql injection

CVE-2024-24478 | Wireshark up to 4.1.x packet-bgp.c dissect_bgp_open denial of service

CVE-2023-44983 | Aruba HiSpeed Cache Plugin up to 2.0.6 on WordPress information disclosure

CVE-2024-57763 | MSFM up to 2025.01.0 fastjson system/table/addField deserialization