Vulnerability Details : CVE-2022-1354
A heap buffer overflow flaw was found in Libtiffs' tiffinfo.c in TIFFReadRawDataStriped() function. This flaw allows an attacker to pass a crafted TIFF file to the tiffinfo tool, triggering a heap buffer overflow issue and causing a crash that leads to a denial of service.
Vulnerability category: OverflowMemory CorruptionDenial of service
Exploit prediction scoring system (EPSS) score for CVE-2022-1354
Probability of exploitation activity in the next 30 days: 0.09%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 38 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2022-1354
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
5.5
|
MEDIUM | CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H |
1.8
|
3.6
|
NIST |
CWE ids for CVE-2022-1354
-
The product reads data past the end, or before the beginning, of the intended buffer.Assigned by: secalert@redhat.com (Primary)
-
The product writes data past the end, or before the beginning, of the intended buffer.Assigned by: nvd@nist.gov (Secondary)
References for CVE-2022-1354
-
https://security.netapp.com/advisory/ntap-20221014-0007/
August 2022 LibTIFF Vulnerabilities in NetApp Products | NetApp Product SecurityThird Party Advisory
-
https://bugzilla.redhat.com/show_bug.cgi?id=2074404
2074404 – (CVE-2022-1354) CVE-2022-1354 libtiff: heap-buffer-overflow in TIFFReadRawDataStriped() in tiffinfo.cExploit;Issue Tracking;Patch;Third Party Advisory
-
https://gitlab.com/libtiff/libtiff/-/issues/319
heap-buffer-overflow /home/lin/libtiff/tools/tiffinfo.c:440:8 in TIFFReadRawDataStriped in branch 27f399af (#319) · Issues · libtiff / libtiff · GitLabExploit;Issue Tracking;Patch;Third Party Advisory
-
https://lists.debian.org/debian-lts-announce/2023/01/msg00018.html
[SECURITY] [DLA 3278-1] tiff security updateMailing List;Third Party Advisory
-
https://security.gentoo.org/glsa/202210-10
LibTIFF: Multiple Vulnerabilities (GLSA 202210-10) — Gentoo securityThird Party Advisory
-
https://gitlab.com/libtiff/libtiff/-/commit/87f580f39011109b3bb5f6eca13fac543a542798
Merge branch 'fix_319' into 'master' (87f580f3) · Commits · libtiff / libtiff · GitLabPatch
-
https://access.redhat.com/security/cve/CVE-2022-1354
CVE-2022-1354- Red Hat Customer PortalIssue Tracking;Third Party Advisory
-
https://www.debian.org/security/2023/dsa-5333
Debian -- Security Information -- DSA-5333-1 tiffThird Party Advisory
Products affected by CVE-2022-1354
- cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*
- cpe:2.3:o:debian:debian_linux:11.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:libtiff:libtiff:*:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
- cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*