---

CVE-2022-1355 - log back

CVE-2022-1355 created at 16 May 2022 19:20:49
Severity	+ Medium
Remote	+ Local
Type	+ Denial of service
Description	+ A stack buffer overflow flaw was found in Libtiffs' tiffcp.c in main() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffcp tool, triggering a stack buffer overflow issue, possibly corrupting the memory, and causing a crash that leads to a denial of service.
References	+ https://gitlab.com/libtiff/libtiff/-/issues/400 + https://gitlab.com/libtiff/libtiff/-/merge_requests/323 + https://gitlab.com/libtiff/libtiff/-/commit/9752dae8febab08879fc0159e7d387cff14eb3c3
Notes