ALPINE-CVE-2022-3598

🗓️ 21 Oct 2022 16:15:11Reported by GoogleType

osv

osv🔗 osv.dev👁 1 Views

Out of bounds write in LibTIFF 4.4.0 enables denial of service from crafted image files; fix commit cfbb883b.

Reporter	Title	Published	Views	Family All 186
ALT Linux	Security fix for the ALT Linux 10 package libtiff version 4.4.0-alt2	27 Dec 202200:00	–	altlinux
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in Libtiff	28 Feb 202422:19	–	ibm
Tenable Nessus	Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2023-364)	3 Oct 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2024-634)	28 May 202400:00	–	nessus
Tenable Nessus	Amazon Linux 2 : libtiff, --advisory ALAS2-2026-3130 (ALAS-2026-3130)	21 Jan 202600:00	–	nessus
Tenable Nessus	AlmaLinux 9 : libtiff (ALSA-2023:2340)	14 May 202300:00	–	nessus
Tenable Nessus	CentOS 9 : libtiff-4.4.0-7.el9	29 Feb 202400:00	–	nessus
Tenable Nessus	Debian dla-3278 : libtiff-dev - security update	21 Jan 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-1014)	5 Jan 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-1039)	5 Jan 202300:00	–	nessus

Source	Link
security	www.security.alpinelinux.org/vuln/CVE-2022-3598

15 Jun 2026 18:18Current

7High risk

Vulners AI Score7

CVSS 3.16.5

EPSS0.00946

out of bounds image file format denial of service contig samples shift fix commit cfbb883b