Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

oracle-oval логотип

ELSA-2022-8194

Опубликовано: 22 нояб. 2022
Источник: oracle-oval
Платформа: Oracle Linux 9

Описание

ELSA-2022-8194: libtiff security update (MODERATE)

[4.4.0-2]

  • Update to version 4.4.0
  • Resolves: CVE-2022-0561 CVE-2022-0562 CVE-2022-22844 CVE-2022-0865 CVE-2022-0891 CVE-2022-0924 CVE-2022-0909 CVE-2022-0908 CVE-2022-1354 CVE-2022-1355

Обновленные пакеты

Oracle Linux 9

Oracle Linux aarch64

libtiff

4.4.0-2.el9

libtiff-devel

4.4.0-2.el9

libtiff-tools

4.4.0-2.el9

Oracle Linux x86_64

libtiff

4.4.0-2.el9

libtiff-devel

4.4.0-2.el9

libtiff-tools

4.4.0-2.el9

Связанные CVE

CVE-2022-1355
CVE-2022-1354
CVE-2022-0909
CVE-2022-0865
CVE-2022-0908
CVE-2022-22844
CVE-2022-0561
CVE-2022-0562
CVE-2022-0891
CVE-2022-0924

Ссылки на источники

Связанные уязвимости

rocky логотип

RLSA-2022:7585

rocky
почти 3 года назад

Moderate: libtiff security update

oracle-oval логотип

ELSA-2022-7585

oracle-oval
больше 2 лет назад

ELSA-2022-7585: libtiff security update (MODERATE)

ubuntu логотип

CVE-2022-1355

CVSS3: 6.1
ubuntu
почти 3 года назад

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service.

redhat логотип

CVE-2022-1355

CVSS3: 6.6
redhat
больше 3 лет назад

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service.

nvd логотип

CVE-2022-1355

CVSS3: 6.1
nvd
почти 3 года назад

A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service.