Fedora 38 : tkimg (2024-43b9d9bff9)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-43b9d9bff9 advisory. An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB. (CVE-2023-6277) Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version…Read More