CVE-2022-0908

CVSS v3.1

7.7

High

Vector

AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libtiff versions up to 4.3.0

Description The issue is related to a null source pointer being passed as an argument to the memcpy() function within the TIFFFetchNormalTag() function in the tif dirread.c component of the LibTIFF library. This can lead to a Denial of Service when a specially crafted TIFF file is used. The vulnerability can be exploited by a remote attacker.

Recommendations For libtiff versions up to 4.3.0, update to a version later than 4.3.0 to resolve the issue. As a temporary workaround, consider restricting the use of the TIFFFetchNormalTag() function in the tif dirread.c component until a patch is available. Avoid using specially crafted TIFF files that could exploit the null source pointer issue in the memcpy() function.

Exploit

Fix

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALSA-2022:7585

ALSA-2022:8194

ALT-PU-2022-2007

ALT-PU-2022-3428

ALT-PU-2025-7532

AZL-44427

AZL-9021

BDU:2022-05720

CESA-2022_7585

CVE-2022-0908

DSA-5108-1

MGASA-2022-0119

OESA-2022-1607

OPENSUSE-SU-2022_1882-1

OPENSUSE-SU-2024:12057-1

RHSA-2022:7585

RHSA-2022:8194

RHSA-2022_7585

RHSA-2022_8194

RLSA-2022:7585

SUSE-SU-2022:1667-1

SUSE-SU-2022:1882-1

SUSE-SU-2022_1667-1

USN-5523-1

USN-5523-2

Affected Products

Alt Linux

Almalinux

Astra Linux

Centos

Linuxmint

Red Hat

Rocky Linux

Suse

Ubuntu

Libtiff

CVE-2022-0908

Weakness Enumeration

Related Identifiers

Affected Products

References · 112