Lucene search
RedhatCVELIST:CVE-2022-2867HistoryAug 17, 2022 - 12:00 a.m.
CVE-2022-2867
2022-08-1700:00:00
CWE-191
redhat
www.cve.org
7
libtiff
tiffcrop
uint32_t
underflow
out of bounds
read
write
libtiff’s tiffcrop utility has a uint32_t underflow that can lead to out of bounds read and write. An attacker who supplies a crafted file to tiffcrop (likely via tricking a user to run tiffcrop on it with certain parameters) could cause a crash or in some cases, further exploitation.
CNA Affected
[
{
"vendor": "n/a",
"product": "libtiff",
"versions": [
{
"version": "libtiff 4.4.0rc1",
"status": "affected"
}
]
}
]Related
amazon
amazon
Important: libtiff
2022-10-31 19:40:00
Important: libtiff
2022-12-01 17:33:00
Important: libtiff
2022-10-31 19:40:00
alpinelinux
alpinelinux
CVE-2022-2867
2022-08-17 22:15:08
cbl_mariner
cbl_mariner
CVE-2022-2867 affecting package libtiff for versions less than 4.5.0-1
2023-04-16 01:04:22
CVE-2022-2867 affecting package libtiff 4.4.0-2
2023-03-16 03:40:02
prion
prion
Out-of-bounds
2022-08-17 22:15:00
debiancve
debiancve
CVE-2022-2867
2022-08-17 22:15:08
redhatcve
redhatcve
CVE-2022-2867
2022-08-16 23:38:12
nessus
nessus
Amazon Linux AMI : libtiff (ALAS-2022-1647)
2022-12-10 00:00:00
EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2022-2689)
2022-11-02 00:00:00
EulerOS Virtualization 2.10.0 : libtiff (EulerOS-SA-2022-2909)
2022-12-28 00:00:00
osv
osv
CVE-2022-2867
2022-08-17 22:15:08
tiff vulnerabilities
2022-09-08 21:12:58
Moderate: libtiff security update
2023-01-12 08:25:25
veracode
veracode
Denial Of Service (DoS)
2022-08-18 07:14:57
cnvd
cnvd
libtiff buffer overflow vulnerability (CNVD-2022-72103)
2022-08-18 00:00:00
nvd
nvd
CVE-2022-2867
2022-08-17 22:15:08
cve
cve
CVE-2022-2867
2022-08-17 22:15:08
openvas
openvas
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-2657)
2022-11-03 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-2935)
2022-12-30 00:00:00
Mageia: Security Advisory (MGASA-2022-0337)
2022-09-19 00:00:00
ubuntucve
ubuntucve
ubuntu
ubuntu
LibTIFF vulnerabilities
2022-09-08 00:00:00
LibTIFF vulnerabilities
2022-11-08 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerability
2022-09-16 22:39:55
rosalinux
rosalinux
Advisory ROSA-SA-2024-2338
2024-02-06 08:15:12
ibm
ibm
Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in LibTIFF
2023-05-02 20:42:17
Security Bulletin: IBM Cloud Pak for Network Automation v2.4.4 fixes multiple security vulnerabilities
2023-03-02 09:08:33
Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs
2023-02-24 19:49:04
suse
suse
Security update for tiff (important)
2022-10-21 00:00:00
oraclelinux
oraclelinux
libtiff security update
2023-01-12 00:00:00
almalinux
almalinux
Moderate: libtiff security update
2023-01-12 00:00:00
redhat
redhat
(RHSA-2023:0095) Moderate: libtiff security update
2023-01-12 08:25:25
rocky
rocky
libtiff security update
2023-01-12 08:25:25
cloudfoundry
cloudfoundry
USN-5714-1: LibTIFF vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
debian
debian
[SECURITY] [DLA 3278-1] tiff security update
2023-01-20 22:37:38
[SECURITY] [DSA 5333-1] tiff security update
2023-01-29 12:55:02