Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2022-2058

Опубликовано: 30 июн. 2022
Источник: redhat
CVSS3: 5.1
EPSS Низкий

Описание

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

A divide-by-zero vulnerability was found in libtiff. This flaw allows an attacker to cause a denial of service via a crafted tiff file.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 6libtiffOut of support scope
Red Hat Enterprise Linux 7compat-libtiff3Out of support scope
Red Hat Enterprise Linux 7libtiffOut of support scope
Red Hat Enterprise Linux 8compat-libtiff3Will not fix
Red Hat Enterprise Linux 8libtiffFixedRHSA-2023:009512.01.2023
Red Hat Enterprise Linux 9libtiffFixedRHSA-2023:030223.01.2023

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate
Дефект:
CWE-369
https://bugzilla.redhat.com/show_bug.cgi?id=2103222libtiff: division by zero issues in tiffcrop

EPSS

Процентиль: 25%
0.00083
Низкий

5.1 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2022-2058

CVSS3: 5.5
ubuntu
около 3 лет назад

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

nvd логотип

CVE-2022-2058

CVSS3: 5.5
nvd
около 3 лет назад

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

msrc логотип

CVE-2022-2058

CVSS3: 6.5
msrc
около 3 лет назад

Описание отсутствует

debian логотип

CVE-2022-2058

CVSS3: 5.5
debian
около 3 лет назад

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to ...

github логотип

GHSA-5c57-665r-m369

CVSS3: 6.5
github
около 3 лет назад

Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit f3a5e010.

EPSS

Процентиль: 25%
0.00083
Низкий

5.1 Medium

CVSS3

Уязвимость CVE-2022-2058