Lucene search
PRIOn knowledge basePRION:CVE-2022-0908HistoryMar 11, 2022 - 6:15 p.m.
Null pointer dereference
2022-03-1118:15:00
PRIOn knowledge base
www.prio-n.com
5
Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| debian_linux | eq | 10.0 | |
| debian_linux | eq | 11.0 | |
| fedora | eq | 35 | |
| fedora | eq | 36 | |
| libtiff | le | 4.3.0 |
References
gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0908.json
gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85
gitlab.com/libtiff/libtiff/-/issues/383
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
security.gentoo.org/glsa/202210-10
security.netapp.com/advisory/ntap-20220506-0002/
www.debian.org/security/2022/dsa-5108
Related
openvas
openvas
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-2077)
2022-07-14 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-1824)
2022-06-14 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-2083)
2022-07-14 00:00:00
alpinelinux
alpinelinux
CVE-2022-0908
2022-03-11 18:15:27
nvd
nvd
CVE-2022-0908
2022-03-11 18:15:27
ubuntucve
ubuntucve
CVE-2022-0908
2022-03-11 00:00:00
ibm
ibm
nessus
nessus
EulerOS Virtualization 2.10.1 : libtiff (EulerOS-SA-2022-2083)
2022-07-15 00:00:00
EulerOS Virtualization 2.10.0 : libtiff (EulerOS-SA-2022-2077)
2022-07-14 00:00:00
EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2022-1824)
2022-06-13 00:00:00
cvelist
cvelist
CVE-2022-0908
2022-03-11 00:00:00
debiancve
debiancve
CVE-2022-0908
2022-03-11 18:15:27
veracode
veracode
Denial Of Service (DoS)
2022-04-22 04:52:51
cbl_mariner
cbl_mariner
CVE-2022-0908 affecting package libtiff for versions less than 4.3.0-2
2022-04-26 20:17:07
CVE-2022-0908 affecting package libtiff 4.1.0-3
2022-07-14 20:59:55
cve
cve
CVE-2022-0908
2022-03-11 18:15:27
osv
osv
CVE-2022-0908
2022-03-11 18:15:27
tiff vulnerabilities
2022-07-19 11:05:26
tiff vulnerabilities
2022-09-12 07:49:59
redhatcve
redhatcve
CVE-2022-0908
2022-03-15 07:48:28
mageia
mageia
Updated libtiff packages fix security vulnerability
2022-03-28 19:23:37
fedora
fedora
[SECURITY] Fedora 36 Update: libtiff-4.3.0-6.fc36
2022-04-03 00:15:59
[SECURITY] Fedora 35 Update: libtiff-4.3.0-6.fc35
2022-03-31 01:15:26
ubuntu
ubuntu
LibTIFF vulnerabilities
2022-07-19 00:00:00
LibTIFF vulnerabilities
2022-09-12 00:00:00
cloudfoundry
cloudfoundry
USN-5523-2: LibTIFF vulnerabilities | Cloud Foundry
2022-09-29 00:00:00
suse
suse
Security update for tiff (important)
2022-05-30 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0400
2022-06-04 00:00:00
Critical Photon OS Security Update - PHSA-2022-0185
2022-05-18 00:00:00
Moderate Photon OS Security Update - PHSA-2022-3.0-0400
2022-06-04 00:00:00
debian
debian
[SECURITY] [DSA 5108-1] tiff security update
2022-03-24 18:55:21
archlinux
archlinux
[ASA-202204-6] libtiff: multiple issues
2022-04-05 00:00:00
rocky
rocky
libtiff security update
2022-11-08 06:23:40
almalinux
almalinux
Moderate: libtiff security update
2022-11-08 00:00:00
Moderate: libtiff security update
2022-11-15 00:00:00
oraclelinux
oraclelinux
libtiff security update
2022-11-15 00:00:00
libtiff security update
2022-11-22 00:00:00
redhat
redhat
(RHSA-2022:7585) Moderate: libtiff security update
2022-11-08 06:23:40
(RHSA-2022:8194) Moderate: libtiff security update
2022-11-15 06:18:19
(RHSA-2023:0470) Important: Migration Toolkit for Runtimes security update
2023-01-26 11:33:15
amazon
amazon
Medium: libtiff
2022-04-25 22:56:00
Medium: libtiff
2022-07-28 20:38:00
gentoo
gentoo
LibTIFF: Multiple Vulnerabilities
2022-10-31 00:00:00