CVE-2022-48281
published 2023-01-23CVE-2022-48281: processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
PriorityP423medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
EPSS
0.46%
36.7th percentile
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
Affected
6 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | tiff | < tiff 4.5.0-4 (bookworm) | tiff 4.5.0-4 (bookworm) |
| libtiff | libtiff | <= 4.5.0 | — |
| msrc | cbl2_libtiff_4.4.0-7_on_cbl_mariner_2.0 | — | — |
| msrc | cm1_libtiff_4.4.0-7_on_cbl_mariner_1.0 | — | — |
CVSS provenance
nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv6.5MEDIUM
vendor_ubuntu6.5MEDIUM
vendor_debian5.5MEDIUM
vendor_msrc5.5MEDIUM
vendor_redhat5.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
OSV
tiff vulnerabilities
osv·2023-08-15·CVSS 5.5
CVE-2022-48281 [MEDIUM] tiff vulnerabilities
tiff vulnerabilities
It was discovered that LibTIFF could be made to write out of bounds when
processing certain malformed image files with the tiffcrop utility. If a
user were tricked into opening a specially crafted image file, an attacker
could possibly use this issue to cause tiffcrop to crash, resulting in a
denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS.
(CVE-2022-48281)
It was discovered that LibTIFF incorrectly handled certain image files. If
a user were tricked into opening a specially crafted image file, an
attacker could possibly use this issue to cause a denial of service. This
issue only affected Ubuntu 23.04. (CVE-2023-2731)
It was discovered that LibTIFF incorrectly handled certain i
OSV
tiff vulnerabilities
osv·2023-02-02·CVSS 6.5
CVE-2019-14973 [MEDIUM] tiff vulnerabilities
tiff vulnerabilities
It was discovered that LibTIFF incorrectly handled certain malformed
images. If a user or automated system were tricked into opening a
specially crafted image, a remote attacker could crash the application,
leading to a denial of service, or possibly execute arbitrary code with
user privileges. This issue was only fixed in Ubuntu 14.04 ESM.
(CVE-2019-14973, CVE-2019-17546, CVE-2020-35523, CVE-2020-35524,
CVE-2022-3970)
It was discovered that LibTIFF was incorrectly acessing a data structure
when processing data with the tiffcrop tool, which could lead to a heap
buffer overflow. An attacker could possibly use this issue to cause a
denial of service or execute arbitrary code. (CVE-2022-48281)
OSV
CVE-2022-48281: processCropSelections in tools/tiffcrop
osv·2023-01-23·CVSS 5.5
CVE-2022-48281 [MEDIUM] CVE-2022-48281: processCropSelections in tools/tiffcrop
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
GHSA
GHSA-4qr3-39h9-qwp4: processCropSelections in tools/tiffcrop
ghsa_unreviewed·2023-01-23
CVE-2022-48281 [HIGH] CWE-787 GHSA-4qr3-39h9-qwp4: processCropSelections in tools/tiffcrop
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
Ubuntu
LibTIFF vulnerabilities
vendor_ubuntu·2023-08-15·CVSS 5.5
CVE-2022-48281 [MEDIUM] LibTIFF vulnerabilities
Title: LibTIFF vulnerabilities
Summary: Several security issues were fixed in LibTIFF.
It was discovered that LibTIFF could be made to write out of bounds when
processing certain malformed image files with the tiffcrop utility. If a
user were tricked into opening a specially crafted image file, an attacker
could possibly use this issue to cause tiffcrop to crash, resulting in a
denial of service, or possibly execute arbitrary code. This issue only
affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS.
(CVE-2022-48281)
It was discovered that LibTIFF incorrectly handled certain image files. If
a user were tricked into opening a specially crafted image file, an
attacker could possibly use this issue to cause a denial of service. This
issue only affected Ubuntu 23.04. (CVE-2023-
Ubuntu
LibTIFF vulnerabilities
vendor_ubuntu·2023-02-02·CVSS 6.5
CVE-2019-14973 [MEDIUM] LibTIFF vulnerabilities
Title: LibTIFF vulnerabilities
Summary: Several security issues were fixed in LibTIFF.
It was discovered that LibTIFF incorrectly handled certain malformed
images. If a user or automated system were tricked into opening a
specially crafted image, a remote attacker could crash the application,
leading to a denial of service, or possibly execute arbitrary code with
user privileges. This issue was only fixed in Ubuntu 14.04 ESM.
(CVE-2019-14973, CVE-2019-17546, CVE-2020-35523, CVE-2020-35524,
CVE-2022-3970)
It was discovered that LibTIFF was incorrectly acessing a data structure
when processing data with the tiffcrop tool, which could lead to a heap
buffer overflow. An attacker could possibly use this issue to cause a
denial of service or execute arbitrary code. (CVE-2022-48281)
Instructi
Red Hat
libtiff: heap-based buffer overflow in processCropSelections() in tools/tiffcrop.c
vendor_redhat·2023-01-23·CVSS 5.5
CVE-2022-48281 [MEDIUM] libtiff: heap-based buffer overflow in processCropSelections() in tools/tiffcrop.c
libtiff: heap-based buffer overflow in processCropSelections() in tools/tiffcrop.c
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
A vulnerability was found in libtiff. This vulnerability occurs due to an issue in processCropSelections in the tools/tiffcrop.c function in LibTIFF that has a heap-based buffer overflow (for example, "WRITE of size 307203") via a crafted TIFF image.
Package: libtiff (Red Hat Enterprise Linux 6) - Out of support scope
Package: compat-libtiff3 (Red Hat Enterprise Linux 7) - Out of support scope
Package: libtiff (Red Hat Enterprise Linux 7) - Will not fix
Package: compat-libtiff3 (Red Hat Enterprise Linux 8) - Will not fix
Microsoft
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g. "WRITE of size 307203") via a crafted TIFF image.
vendor_msrc·2023-01-10·CVSS 5.5
CVE-2022-48281 [MEDIUM] CWE-787 processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g. "WRITE of size 307203") via a crafted TIFF image.
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g. "WRITE of size 307203") via a crafted TIFF image.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency in this work which is why we began publishing CSAF/VEX in October 2025. See this blog post for more information. If impact to additional products is identified, we will update the CVE to reflect this.
Mariner: Mariner
mitr
Debian
CVE-2022-48281: tiff - processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-ba...
vendor_debian·2022·CVSS 5.5
CVE-2022-48281 [MEDIUM] CVE-2022-48281: tiff - processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-ba...
processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.
Scope: local
bookworm: resolved (fixed in 4.5.0-4)
bullseye: resolved (fixed in 4.2.0-1+deb11u3)
forky: resolved (fixed in 4.5.0-4)
sid: resolved (fixed in 4.5.0-4)
trixie: resolved (fixed in 4.5.0-4)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5https://gitlab.com/libtiff/libtiff/-/issues/488https://lists.debian.org/debian-lts-announce/2023/01/msg00037.htmlhttps://security.gentoo.org/glsa/202305-31https://security.netapp.com/advisory/ntap-20230302-0004/https://www.debian.org/security/2023/dsa-5333https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5https://gitlab.com/libtiff/libtiff/-/issues/488https://lists.debian.org/debian-lts-announce/2023/01/msg00037.htmlhttps://security.gentoo.org/glsa/202305-31https://security.netapp.com/advisory/ntap-20230302-0004/https://www.debian.org/security/2023/dsa-5333
2023-01-23
Published