CVE-2022-2520

Опубликовано: 31 авг. 2022

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS3: 6.5

Описание

A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at tiffcrop.c:8621 that can cause program crash when reading a crafted input.

Релиз	Статус	Примечание
bionic	not-affected	code not present
devel	not-affected	4.4.0-4ubuntu3.1
esm-infra-legacy/trusty	not-affected	code not present
esm-infra/bionic	not-affected	code not present
esm-infra/focal	not-affected	code not present
esm-infra/xenial	not-affected	code not present
focal	not-affected	code not present
jammy	not-affected	code not present
kinetic	released	4.4.0-4ubuntu3.1
lunar	released	4.4.0-4ubuntu3.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 10%

0.00037

Низкий

6.5 Medium

CVSS3

Связанные уязвимости

CVE-2022-2520

CVSS3: 6.5

redhat

около 3 лет назад

A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at tiffcrop.c:8621 that can cause program crash when reading a crafted input.

CVE-2022-2520

CVSS3: 6.5

nvd

почти 3 года назад

A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at tiffcrop.c:8621 that can cause program crash when reading a crafted input.

CVE-2022-2520

CVSS3: 6.5

debian

почти 3 года назад

A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion f ...

GHSA-x8g3-wjf9-c729

CVSS3: 6.5

github

почти 3 года назад

A flaw was found in libtiff 4.4.0rc1. There is a sysmalloc assertion fail in rotateImage() at tiffcrop.c:8621 that can cause program crash when reading a crafted input.

BDU:2023-05419

CVSS3: 6.5

fstec

почти 3 года назад

Уязвимость функции rotateimage() библиотеки libtiff, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 10%

0.00037

Низкий

6.5 Medium

CVSS3

CVE-2022-2520

Описание

Пакет tiff

Ссылки на источники

Связанные уязвимости