CVE-2022-0891

Description

A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact

Related CPE's

a libtiff libtiff ********

o debian debian_linux 10.0 *******

o debian debian_linux 11.0 *******

o fedoraproject fedora 35 *******

o fedoraproject fedora 36 *******

References

https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json

Third Party AdvisoryVDB Entry

https://gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c

PatchThird Party Advisory

https://gitlab.com/libtiff/libtiff/-/issues/382

ExploitIssue TrackingPatchThird Party Advisory

https://gitlab.com/libtiff/libtiff/-/issues/380

ExploitIssue TrackingPatchThird Party Advisory

DSA-5108

Third Party Advisory

FEDORA-2022-e2996202a0

Third Party Advisory

FEDORA-2022-c39720a0ed

Third Party Advisory

CvssV3 impact

BaseSeverity	HIGH
ConfidentialityImpact	LOW
AttackComplexity	LOW
Scope	UNCHANGED
AttackVector	NETWORK
AvailabilityImpact	HIGH
IntegrityImpact	NONE
PrivilegesRequired	NONE
BaseScore	7.1
VectorString	CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H
Version	3.1
UserInteraction	REQUIRED

CvssV2 impact

AccessComplexity	MEDIUM
ConfidentialityImpact	PARTIAL
AvailabilityImpact	PARTIAL
IntegrityImpact	NONE
BaseScore	5.8
VectorString	AV:N/AC:M/Au:N/C:P/I:N/A:P
Version	2.0
AccessVector	NETWORK
Authentication	NONE

Created by Yello

About Severity.io