Уязвимость CVE-2022-2867

CVE-2022-2867

CVSS3: 5.5

ubuntu

больше 3 лет назад

libtiff's tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to tiffcrop (likely via tricking a user to run tiffcrop on it with certain parameters) could cause a crash or in some cases, further exploitation.

CVE-2022-2867

CVSS3: 5.5

redhat

около 4 лет назад

libtiff's tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to tiffcrop (likely via tricking a user to run tiffcrop on it with certain parameters) could cause a crash or in some cases, further exploitation.

CVE-2022-2867

CVSS3: 5.5

nvd

больше 3 лет назад

libtiff's tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to tiffcrop (likely via tricking a user to run tiffcrop on it with certain parameters) could cause a crash or in some cases, further exploitation.

CVE-2022-2867

CVSS3: 5.5

debian

больше 3 лет назад

libtiff's tiffcrop utility has a uint32_t underflow that can lead to o ...

GHSA-ww36-qxj8-93p2

CVSS3: 8.8

github

больше 3 лет назад

libtiff's tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to tiffcrop (likely via tricking a user to run tiffcrop on it with certain parameters) could cause a crash or in some cases, further exploitation.

exploitDog

CVE-2022-2867

Описание

Возможность эксплуатации

Связанные уязвимости