Lucene search
Veracode Vulnerability DatabaseVERACODE:37989HistoryNov 14, 2022 - 6:29 a.m.
Integer Overflow
2022-11-1406:29:11
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
libtiff vulnerability
integer overflow
memory corruption
remote attacker
application crash
0.003 Low
EPSS
Percentile
68.3%
libtiff.so is vulnerable to integer overflow. The vulnerability is due to memory corruption in tif_getimage.c, which allows the remote attacker to crash the application.
References
bugs.chromium.org/p/oss-fuzz/issues/detail?id=53137
github.com/advisories/GHSA-44v9-23w3-fv66
gitlab.com/libtiff/libtiff/-/commit/227500897dfb07fb7d27f7aa570050e62617e3be
lists.debian.org/debian-lts-announce/2023/01/msg00018.html
oss-fuzz.com/download?testcase_id=5738253143900160
security.netapp.com/advisory/ntap-20221215-0009/
support.apple.com/kb/HT213841
support.apple.com/kb/HT213843
vuldb.com/?id.213549
Related
ubuntu
ubuntu
LibTIFF vulnerability
2022-11-24 00:00:00
LibTIFF vulnerability
2022-12-01 00:00:00
LibTIFF vulnerabilities
2023-02-02 00:00:00
redhatcve
redhatcve
CVE-2022-3970
2022-11-28 11:26:13
osv
osv
CVE-2022-3970
2022-11-13 08:15:16
tiff vulnerability
2022-12-01 16:21:13
tiff vulnerability
2022-11-24 17:02:39
alpinelinux
alpinelinux
CVE-2022-3970
2022-11-13 08:15:16
redos
redos
ROS-20221118-01
2022-11-18 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-3970 affecting package libtiff 4.4.0-5
2022-11-24 00:45:37
CVE-2022-3970 affecting package libtiff for versions less than 4.4.0-6
2022-11-30 04:44:03
openvas
openvas
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-1412)
2023-03-07 00:00:00
Huawei EulerOS: Security Advisory for compat-libtiff3 (EulerOS-SA-2023-2138)
2023-06-09 00:00:00
Mageia: Security Advisory (MGASA-2022-0448)
2022-12-07 00:00:00
nvd
nvd
CVE-2022-3970
2022-11-13 08:15:16
nessus
nessus
CBL Mariner 2.0 Security Update: libtiff (CVE-2022-3970)
2023-03-20 00:00:00
EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-1427)
2023-03-07 00:00:00
EulerOS 2.0 SP5 : compat-libtiff3 (EulerOS-SA-2023-2138)
2023-06-09 00:00:00
ubuntucve
ubuntucve
CVE-2022-3970
2022-11-13 00:00:00
debiancve
debiancve
CVE-2022-3970
2022-11-13 08:15:16
mageia
mageia
Updated libtiff packages fix security vulnerability
2022-12-07 02:32:48
cloudfoundry
cloudfoundry
USN-5743-2: LibTIFF vulnerability | Cloud Foundry
2022-12-07 00:00:00
cve
cve
CVE-2022-3970
2022-11-13 08:15:16
cvelist
cvelist
CVE-2022-3970 LibTIFF tif_getimage.c TIFFReadRGBATileExt integer overflow
2022-11-13 00:00:00
f5
f5
K37923932 : libTIFF vulnerability CVE-2022-3970
2022-12-09 00:00:00
prion
prion
Integer overflow
2022-11-13 08:15:00
photon
photon
Critical Photon OS Security Update - PHSA-2022-0286
2022-11-21 00:00:00
Critical Photon OS Security Update - PHSA-2022-0543
2022-11-22 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0286
2022-11-21 00:00:00
amazon
amazon
Important: libtiff
2022-12-01 20:31:00
Important: libtiff
2022-12-01 17:33:00
oraclelinux
oraclelinux
libtiff security update
2023-05-24 00:00:00
libtiff security update
2023-05-15 00:00:00
redhat
redhat
(RHSA-2023:2883) Moderate: libtiff security update
2023-05-16 05:57:15
(RHSA-2023:3813) Moderate: Migration Toolkit for Runtimes security update
2023-06-27 10:52:18
(RHSA-2023:2340) Moderate: libtiff security update
2023-05-09 05:07:52
almalinux
almalinux
Moderate: libtiff security update
2023-05-16 00:00:00
Moderate: libtiff security update
2023-05-09 00:00:00
ibm
ibm
rosalinux
rosalinux
Advisory ROSA-SA-2023-2264
2023-10-22 05:35:45
Advisory ROSA-SA-2024-2338
2024-02-06 08:15:12
slackware
slackware
[slackware-security] libtiff
2023-01-04 02:19:46
altlinux
altlinux
Security fix for the ALT Linux 10 package libtiff version 4.4.0-alt2
2022-12-27 00:00:00
debian
debian
[SECURITY] [DLA 3278-1] tiff security update
2023-01-20 22:37:38
apple
apple
About the security content of iOS 16.6 and iPadOS 16.6
2023-07-24 00:00:00
About the security content of macOS Ventura 13.5
2023-07-24 00:00:00