CVE-2022-48281

Published: Jan 23, 2023

Modified: Apr 3, 2025

PUBLISHED

Description

processCropSelections in tools/tiffcrop.c in LibTIFF through 4.5.0 has a heap-based buffer overflow (e.g., "WRITE of size 307203") via a crafted TIFF image.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://gitlab.com/libtiff/libtiff/-/issues/488

https://gitlab.com/libtiff/libtiff/-/commit/d1b6b9c1b3cae2d9e37754506c1ad8f4f7b646b5

DSA-5333

vendor-advisory

[debian-lts-announce] 20230130 [SECURITY] [DLA 3297-1] tiff security update

mailing-list

https://security.netapp.com/advisory/ntap-20230302-0004/

GLSA-202305-31

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2022-48281

Description

Affected Products

References