Lucene search
Redhat.comRH:CVE-2022-2868HistoryAug 17, 2022 - 12:08 a.m.
CVE-2022-2868
2022-08-1700:08:19
redhat.com
access.redhat.com
27
improper input validation
libtiff
tiffcrop
out-of-bounds read
crash
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
27.8%
An improper input validation flaw was found in libtiff’s tiffcrop utility. This issue can lead to an out-of-bounds read and cause a crash if an attacker can supply a crafted file to tiffcrop.
Related
nvd
nvd
CVE-2022-2868
2022-08-17 22:15:08
prion
prion
Out-of-bounds
2022-08-17 22:15:00
alpinelinux
alpinelinux
CVE-2022-2868
2022-08-17 22:15:08
veracode
veracode
Denial Of Service (DoS)
2022-08-18 08:58:31
cnvd
cnvd
LibTIFF input validation error vulnerability
2022-08-18 00:00:00
cvelist
cvelist
CVE-2022-2868
2022-08-17 00:00:00
cve
cve
CVE-2022-2868
2022-08-17 22:15:08
cbl_mariner
cbl_mariner
CVE-2022-2868 affecting package libtiff 4.4.0-2
2023-03-16 03:40:02
CVE-2022-2868 affecting package libtiff for versions less than 4.5.0-1
2023-04-16 01:04:22
osv
osv
CVE-2022-2868
2022-08-17 22:15:08
tiff vulnerabilities
2022-09-08 21:12:58
Moderate: libtiff security update
2023-01-12 08:25:25
debiancve
debiancve
CVE-2022-2868
2022-08-17 22:15:08
openvas
openvas
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-2799)
2022-12-09 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2022-2909)
2022-12-30 00:00:00
Ubuntu: Security Advisory (USN-5604-1)
2022-09-16 00:00:00
amazon
amazon
Important: libtiff
2022-10-31 19:40:00
Medium: libtiff
2023-08-17 11:58:00
nessus
nessus
EulerOS 2.0 SP8 : libtiff (EulerOS-SA-2022-2799)
2022-12-08 00:00:00
EulerOS Virtualization 2.10.0 : libtiff (EulerOS-SA-2022-2909)
2022-12-28 00:00:00
EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2022-2689)
2022-11-02 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerability
2022-09-16 22:39:55
ubuntucve
ubuntucve
ubuntu
ubuntu
LibTIFF vulnerabilities
2022-09-08 00:00:00
LibTIFF vulnerabilities
2022-11-08 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2264
2023-10-22 05:35:45
Advisory ROSA-SA-2024-2338
2024-02-06 08:15:12
ibm
ibm
suse
suse
Security update for tiff (important)
2022-10-21 00:00:00
rocky
rocky
libtiff security update
2023-01-12 08:25:25
oraclelinux
oraclelinux
libtiff security update
2023-01-12 00:00:00
almalinux
almalinux
Moderate: libtiff security update
2023-01-12 00:00:00
redhat
redhat
(RHSA-2023:0095) Moderate: libtiff security update
2023-01-12 08:25:25
cloudfoundry
cloudfoundry
USN-5714-1: LibTIFF vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
debian
debian
[SECURITY] [DLA 3278-1] tiff security update
2023-01-20 22:37:38
[SECURITY] [DSA 5333-1] tiff security update
2023-01-29 12:55:02
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.001 Low
EPSS
Percentile
27.8%
Related for RH:CVE-2022-2868