CVE-2022-2868

Опубликовано: 17 авг. 2022

Источник: ubuntu

Приоритет: low

CVSS3: 5.5

Описание

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop.

Релиз	Статус	Примечание
bionic	released	4.0.9-5ubuntu0.8
devel	not-affected	4.4.0~rc1-1
esm-infra-legacy/trusty	released	4.0.3-7ubuntu0.11+esm3
esm-infra/bionic	released	4.0.9-5ubuntu0.8
esm-infra/focal	released	4.1.0+git191117-2ubuntu0.20.04.6
esm-infra/xenial	released	4.0.6-1ubuntu0.8+esm3
focal	released	4.1.0+git191117-2ubuntu0.20.04.6
jammy	released	4.3.0-6ubuntu0.2
kinetic	not-affected	4.4.0~rc1-1
trusty	ignored	end of standard support

Показывать по

Ссылки на источники

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2022-2868

CVSS3: 5.5

redhat

около 4 лет назад

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop.

CVE-2022-2868

CVSS3: 5.5

nvd

больше 3 лет назад

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop.

CVE-2022-2868

CVSS3: 5.5

msrc

больше 3 лет назад

Описание отсутствует

CVE-2022-2868

CVSS3: 5.5

debian

больше 3 лет назад

libtiff's tiffcrop utility has a improper input validation flaw that c ...

GHSA-8rfm-2x4g-8xh5

CVSS3: 8.1

github

больше 3 лет назад

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop.

5.5 Medium

CVSS3

CVE-2022-2868

Описание

Пакет tiff

Ссылки на источники

Связанные уязвимости