Published: 28/03/2022 Updated: 22/02/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 384

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

Out-of-bounds Read error in tiffcrop in libtiff 4.3.0 allows malicious users to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources, the fix is available with commit 46dc8fcd.

Vulnerable Product	Search on Vulmon	Subscribe to Product
libtiff libtiff 4.3.0
netapp active iq unified manager -

Out-of-bounds Read error in tiffcrop in libtiff 430 allows attackers to cause a denial-of-service via a crafted tiff file For users that compile libtiff from sources, the fix is available with commit 46dc8fcd (CVE-2022-1056) A heap buffer overflow flaw was found in Libtiffs' tiffinfoc in TIFFReadRawDataStriped() function This flaw allows an a ...

CWE-125 https://gitlab.com/libtiff/libtiff/-/merge_requests/307 https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-1056.json https://gitlab.com/libtiff/libtiff/-/issues/391 https://security.gentoo.org/glsa/202210-10 https://security.netapp.com/advisory/ntap-20221228-0008/https://nvd.nist.gov https://alas.aws.amazon.com/AL2022/ALAS-2022-183.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2022-1056

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect