Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2022-3570

Опубликовано: 21 окт. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 7.7

Описание

Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact

РелизСтатусПримечание
bionic

released

4.0.9-5ubuntu0.8
devel

not-affected

4.4.0-4ubuntu3.1
esm-infra-legacy/trusty

released

4.0.3-7ubuntu0.11+esm5
esm-infra/bionic

released

4.0.9-5ubuntu0.8
esm-infra/focal

released

4.1.0+git191117-2ubuntu0.20.04.6
esm-infra/xenial

released

4.0.6-1ubuntu0.8+esm6
focal

released

4.1.0+git191117-2ubuntu0.20.04.6
jammy

released

4.3.0-6ubuntu0.2
kinetic

released

4.4.0-4ubuntu3.1
lunar

released

4.4.0-4ubuntu3.1

Показывать по

Ссылки на источники

EPSS

Процентиль: 1%
0.00012
Низкий

7.7 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2022-3570

CVSS3: 5.5
redhat
больше 3 лет назад

Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact

nvd логотип

CVE-2022-3570

CVSS3: 7.7
nvd
около 3 лет назад

Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact

msrc логотип

CVE-2022-3570

CVSS3: 5.5
msrc
около 3 лет назад

Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash potential information disclosure or any other context-dependent impact

debian логотип

CVE-2022-3570

CVSS3: 7.7
debian
около 3 лет назад

Multiple heap buffer overflows in tiffcrop.c utility in libtiff librar ...

github логотип

GHSA-w3vw-h42p-vjw6

CVSS3: 9.8
github
около 3 лет назад

Multiple heap buffer overflows in tiffcrop.c utility in libtiff library Version 4.4.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact

EPSS

Процентиль: 1%
0.00012
Низкий

7.7 High

CVSS3