CVE-2022-0908 in LibTIFFinfo

Summary

Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Responsible

GitLab Inc.

Reservation

03/10/2022

Disclosure

03/11/2022

Status

Confirmed

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
194765	LibTIFF TIFF File tif_dirread.c TIFFFetchNormalTag null pointer dereference	476	Not defined	Official fix	CVE-2022-0908

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

Sources

MITRE
NVD
CVE Details

◂ PreviousOverviewNext ▸

Interested in the pricing of exploits?

See the underground prices here!