Msrc Cm1 Libtiff 4.4.0-5 On Cbl Mariner 1.0 vulnerabilities
2 known vulnerabilities affecting msrc/cm1_libtiff_4.4.0-5_on_cbl_mariner_1.0.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-3597MEDIUMCVSS 6.52022-10-11
CVE-2022-3597 [MEDIUM] CWE-787 LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection tools/tiffcrop.c:6826 allowing attackers to cause a denial-of-service via a craft
LibTIFF 4.4.0 has an out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c:346 when called from extractImageSection tools/tiffcrop.c:6826 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is
msrc
CVE-2022-3599MEDIUMCVSS 6.52022-10-11
CVE-2022-3599 [MEDIUM] CWE-125 LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sour
LibTIFF 4.4.0 has an out-of-bounds read in writeSingleSection in tools/tiffcrop.c:7345 allowing attackers to cause a denial-of-service via a crafted tiff file. For users that compile libtiff from sources the fix is available with commit e8131125.
FAQ: Is Azure Linux
msrc