Lucene search
Veracode Vulnerability DatabaseVERACODE:35479HistoryMay 12, 2022 - 4:56 a.m.
Denial Of Service (DoS)
2022-05-1204:56:04
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
19
0.002 Low
EPSS
Percentile
52.5%
libtiff.so is vulnerable to denial of service (DoS) attacks. A malicious user is able to cause denial-of-service conditions via an out-of-bounds read in LZWDecode in libtiff/tif_lzw.c through a crafted tiff file.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libtiff.so | le | 4.2.1 | |
| libtiff.so | le | 4.2.1 |
References
gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1623.json
gitlab.com/libtiff/libtiff/-/commit/b4e79bfa0c7d2d08f6f1e7ec38143fc8cb11394a
gitlab.com/libtiff/libtiff/-/issues/410
lists.fedoraproject.org/archives/list/[email protected]/message/C7IWZTB4J2N4F5OR5QY4VHDSKWKZSWN3/
lists.fedoraproject.org/archives/list/[email protected]/message/UXAFOP6QQRNZD3HPZ6BMCEZZOM4YIZMK/
security.gentoo.org/glsa/202210-10
security.netapp.com/advisory/ntap-20220616-0005/
www.debian.org/security/2023/dsa-5333
Related
cbl_mariner
cbl_mariner
CVE-2022-1623 affecting package libtiff for versions less than 4.4.0-1
2022-06-26 03:29:31
cvelist
cvelist
CVE-2022-1623
2022-05-11 00:00:00
redhatcve
redhatcve
CVE-2022-1623
2022-05-11 19:08:20
cve
cve
CVE-2022-1623
2022-05-11 15:15:09
nvd
nvd
CVE-2022-1623
2022-05-11 15:15:09
prion
prion
Out-of-bounds
2022-05-11 15:15:00
debiancve
debiancve
CVE-2022-1623
2022-05-11 15:15:09
osv
osv
CVE-2022-1623
2022-05-11 15:15:09
tiff - security update
2023-01-29 00:00:00
nessus
nessus
CBL Mariner 2.0 Security Update: libtiff (CVE-2022-1623)
2023-03-28 00:00:00
Amazon Linux 2022 : (ALAS2022-2022-183)
2022-11-05 00:00:00
Amazon Linux 2022 : (ALAS2022-2022-094)
2022-09-07 00:00:00
ubuntucve
ubuntucve
CVE-2022-1623
2022-05-11 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerability
2022-06-24 23:50:43
openvas
openvas
Fedora: Security Advisory for libtiff (FEDORA-2022-ea3ebeff3d)
2022-06-20 00:00:00
Mageia: Security Advisory (MGASA-2022-0240)
2022-06-27 00:00:00
Fedora: Security Advisory for libtiff (FEDORA-2022-e9fe21d102)
2022-06-23 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: libtiff-4.4.0-1.fc36
2022-06-20 00:40:20
[SECURITY] Fedora 35 Update: libtiff-4.4.0-1.fc35
2022-06-22 01:25:14
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0400
2022-06-04 00:00:00
Moderate Photon OS Security Update - PHSA-2022-3.0-0400
2022-06-04 00:00:00
Critical Photon OS Security Update - PHSA-2022-4.0-0202
2022-06-22 00:00:00
gentoo
gentoo
LibTIFF: Multiple Vulnerabilities
2022-10-31 00:00:00
debian
debian
[SECURITY] [DSA 5333-1] tiff security update
2023-01-29 12:55:02