CVE-2022-1355 log
| Source |
|
| Severity | Medium |
| Remote | No |
| Type | Denial of service |
| Description | A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2721 | libtiff | 4.3.0-2 | Medium | Vulnerable | FS#74772 |
| References |
|---|
https://gitlab.com/libtiff/libtiff/-/issues/400 https://gitlab.com/libtiff/libtiff/-/merge_requests/323 https://gitlab.com/libtiff/libtiff/-/commit/9752dae8febab08879fc0159e7d387cff14eb3c3 |