CVE-2022-0891 log

Severity High
Remote Yes
Type Arbitrary code execution
A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact.
Group Package Affected Fixed Severity Status Ticket
AVG-2659 lib32-libtiff 4.3.0-1 4.3.0-2 High Fixed FS#74229
AVG-2658 libtiff 4.3.0-1 4.3.0-2 High Fixed FS#74229
Date Advisory Group Package Severity Type
05 Apr 2022 ASA-202204-6 AVG-2658 libtiff High multiple issues