GHSA-gqxh-jf4f-xfjr

Опубликовано: 12 мар. 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.5

Описание

Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.

Ссылки

EPSS

Процентиль: 10%

0.00036

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2022-0908

Дефекты

CWE-476

Связанные уязвимости

CVE-2022-0908

CVSS3: 7.7

ubuntu

почти 4 года назад

Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.

CVE-2022-0908

CVSS3: 5.5

redhat

почти 4 года назад

Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.

CVE-2022-0908

CVSS3: 7.7

nvd

почти 4 года назад

Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.

CVE-2022-0908

CVSS3: 5.5

msrc

почти 4 года назад

Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.

CVE-2022-0908

CVSS3: 7.7

debian

почти 4 года назад

Null source pointer passed as an argument to memcpy() function within ...

EPSS

Процентиль: 10%

0.00036

Низкий

5.5 Medium

CVSS3

CVE ID

CVE-2022-0908

Дефекты

CWE-476