CVE-2022-0891

Published
View on NVD ↗
CVSS v3
6.1
MEDIUM
CVSS v2
5.8
MEDIUM
Affected
2
PROJECTS

Description

A heap buffer overflow in ExtractImageSection function in tiffcrop.c in libtiff library Version 4.3.0 allows attacker to trigger unsafe or out of bounds memory access via crafted TIFF image file which could result into application crash, potential information disclosure or any other context-dependent impact

gitlab-org/cves
gitlab-org/cves
This project hosts the CVEs that have been assigned by GitLab in its role as a CNA. See https://about.gitlab.com/security/cve/ for more information
GitLabGitLab
22
libtiff/libtiff
libtiff/libtiff
TIFF Library and Utilities
GitLabGitLab
100