CVE-2022-0908 - log back

CVE-2022-0908 edited at 05 Apr 2022 21:52:30
Severity
- Unknown
+ Medium
Remote
- Unknown
+ Remote
Type
- Unknown
+ Denial of service
Description
+ Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.
References
+ https://gitlab.com/libtiff/libtiff/-/commit/a95b799f65064e4ba2e2dfc206808f86faf93e85
+ https://gitlab.com/libtiff/libtiff/-/issues/383
Notes
CVE-2022-0908 created at 04 Apr 2022 23:32:10