CVE-2022-0561 - log back

CVE-2022-0561 edited at 05 Apr 2022 21:59:20
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ Null source pointer passed as an argument to memcpy() function within TIFFFetchStripThing() in tif_dirread.c in libtiff versions from 3.9.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file.
References
+ https://gitlab.com/libtiff/libtiff/-/issues/362
+ https://gitlab.com/libtiff/libtiff/-/commit/eecb0712f4c3a5b449f70c57988260a667ddbdef
Notes
CVE-2022-0561 created at 04 Apr 2022 23:32:10