CVE-2022-22844 log
| Source |
|
| Severity | Medium |
| Remote | Yes |
| Type | Denial of service |
| Description | LibTIFF 4.3.0 has an out-of-bounds read in _TIFFmemcpy in tif_unix.c in certain situations involving a custom tag and 0x0200 as the second word of the DE field. |
| Group | Package | Affected | Fixed | Severity | Status | Ticket |
|---|---|---|---|---|---|---|
| AVG-2659 | lib32-libtiff | 4.3.0-1 | 4.3.0-2 | High | Fixed | FS#74229 |
| AVG-2658 | libtiff | 4.3.0-1 | 4.3.0-2 | High | Fixed | FS#74229 |
| Date | Advisory | Group | Package | Severity | Type |
|---|---|---|---|---|---|
| 05 Apr 2022 | ASA-202204-6 | AVG-2658 | libtiff | High | multiple issues |
| References |
|---|
https://gitlab.com/libtiff/libtiff/-/issues/355 https://gitlab.com/libtiff/libtiff/-/merge_requests/287 https://gitlab.com/libtiff/libtiff/-/commit/03047a26952a82daaa0792957ce211e0aa51bc64 |