Description

A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact

Related CPE's

a

libtiff

libtiff

Vulnerable

o

debian

debian_linux

2

o

fedoraproject

fedora

2

a

netapp

active_iq_unified_manager

-

*

*

*

*

vmware_vsphere

Vulnerable

References

https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c

PatchThird Party Advisory

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json

Third Party AdvisoryVDB Entry

https://gitlab.com/libtiff/libtiff/-/issues/380

ExploitIssue TrackingPatchThird Party Advisory

https://gitlab.com/libtiff/libtiff/-/issues/382

ExploitIssue TrackingPatchThird Party Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/

https://security.gentoo.org/glsa/202210-10

Third Party Advisory

https://security.netapp.com/advisory/ntap-20221228-0008/

Third Party Advisory

https://www.debian.org/security/2022/dsa-5108

Third Party Advisory

Weaknesses

[email protected]

Primary
CWE-787

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H

7.1 · High

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2022-03-10T17:44:58.207

3 years ago

Last modified

2023-11-07T03:41:38.667

1 year ago