CVE-2022-0891Out-of-bounds Write in Tiff

CWE-787Out-of-bounds WriteCWE-120Classic Buffer Overflow8 documents7 sources
Severity
7.1HIGHNVD
OSV5.5
EPSS
0.0%
top 92.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
Debian TiffLibtiffDebian Linux+3 more
Timeline
PublishedMar 10
Latest updateMay 16

Description

A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:HExploitability: 2.8 | Impact: 4.2

Affected Packages5 packages

NVDlibtiff/libtiff3.9.04.3.0
CVEListV5libtiff/libtiff>=3.9.0, <=4.3.0
debiandebian/tiff< tiff 4.3.0-6 (bookworm)

Also affects: Debian Linux 10.0, 11.0, Fedora 35, 36

Patches

Patch: gitlab.comPatch: gitlab.comPatch: gitlab.com

🔴Vulnerability Details

3
OSV
tiff vulnerabilities2022-05-16
GHSA
GHSA-ppwc-w499-gfmh: A heap buffer overflow in ExtractImageSection function in tiffcrop2022-03-11
OSV
CVE-2022-0891: A heap buffer overflow in ExtractImageSection function in tiffcrop2022-03-10

📋Vendor Advisories

4
Ubuntu
LibTIFF vulnerabilities2022-05-16
Microsoft
A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which2022-03-08
Red Hat
libtiff: heap buffer overflow in extractImageSection2022-02-22
Debian
CVE-2022-0891: tiff - A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff ...2022