GHSA-4qr3-39h9-qwp4

Опубликовано: 23 янв. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.

Ссылки

EPSS

Процентиль: 0%

0.00007

Низкий

8.8 High

CVSS3

CVE ID

CVE-2022-48281

Дефекты

CWE-787

Связанные уязвимости

CVE-2022-48281

CVSS3: 5.5

ubuntu

больше 2 лет назад

processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.

CVE-2022-48281

CVSS3: 5.5

redhat

больше 2 лет назад

processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.

CVE-2022-48281

CVSS3: 5.5

nvd

больше 2 лет назад

processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.

CVE-2022-48281

CVSS3: 5.5

msrc

больше 2 лет назад

Описание отсутствует

CVE-2022-48281

CVSS3: 5.5

debian

больше 2 лет назад

processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has ...

EPSS

Процентиль: 0%

0.00007

Низкий

8.8 High

CVSS3

CVE ID

CVE-2022-48281

Дефекты

CWE-787