Denial Of Service (DoS)

🗓️ 21 Apr 2022 20:53:24Reported by Veracode Vulnerability DatabaseType

veracode🔗 sca.analysiscenter.veracode.com👁 29 Views

tiff vulnerability in ExtractImageSection functio

Reporter	Title	Published	Views	Family All 198
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance may be vulnerable to arbitrary code execution due to CVE-2022-0891	1 Dec 202217:17	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.	2 Feb 202303:37	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in LibTIFF	30 Jan 202316:29	–	ibm
Tenable Nessus	Amazon Linux 2022 : libtiff, libtiff-devel, libtiff-static (ALAS2022-2022-049)	6 Sep 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2022 : libtiff, libtiff-devel, libtiff-static (ALAS2022-2022-194)	4 Nov 202200:00	–	nessus
Tenable Nessus	Amazon Linux 2023 : libtiff, libtiff-devel, libtiff-static (ALAS2023-2023-050)	21 Mar 202300:00	–	nessus
Tenable Nessus	Amazon Linux 2 : libtiff (ALAS-2023-2300)	20 Oct 202300:00	–	nessus
Tenable Nessus	AlmaLinux 8 : libtiff (ALSA-2022:7585)	12 Nov 202200:00	–	nessus
Tenable Nessus	AlmaLinux 9 : libtiff (ALSA-2022:8194)	19 Nov 202200:00	–	nessus
Tenable Nessus	CentOS 8 : libtiff (CESA-2022:7585)	9 Nov 202200:00	–	nessus

Vulners

Node

golang tiffMatch4.1.0-r0os

AND

golang tiffMatch4.2.0-r1os

AND

golang tiffMatch4.3.0-r0os

AND

golang tiffMatch4.2.0-r0os

AND

alpinelinux alpine_linuxMatchedge

golang tiffMatch4.3.0-r0os

AND

alpinelinux alpine_linuxMatch3.15

golang tiffMatch4.2.0-r1os

AND

alpinelinux alpine_linuxMatch3.14

golang tiffMatch4.2.0-r0os

AND

golang tiffMatch4.1.0-r2os

AND

alpinelinux alpine_linuxMatch3.13

compat-libtiff3 compat-libtiff3Match3.9.4_13.el8

compat-libtiff3 compat-libtiff3Match3.9.4_11.el7

compat-libtiff3 compat-libtiff3Match3.9.4_12.el7

libtiff libtiffMatch3.9.4_6.el6_3

libtiff libtiffMatch3.9.4_21.el6_8

libtiff libtiffMatch3.9.4_18.el6_8

libtiff libtiffMatch4.0.9_17.el8

libtiff libtiffMatch4.0.3_35.el7

libtiff libtiffMatch3.9.4_10.el6_5

libtiff libtiffMatch3.9.4_1.el6_0.3

libtiff libtiffMatch4.0.9_18.el8

libtiff libtiffMatch3.9.4_1.el6

libtiff libtiffMatch3.9.4_1.el6_0.1

libtiff libtiffMatch3.9.4_1.el6_0.2

libtiff libtiffMatch4.0.9_21.el8

libtiff libtiffMatch3.9.4_9.el6_3

libtiff libtiffMatch4.0.9_13.el8

libtiff libtiffMatch3.9.4_5.el6_2

libtiff libtiffMatch4.0.3_32.el7

libtiff libtiffMatch4.0.9_20.el8

libtiff libtiffMatch4.0.9_15.el8

Source	Link
secdb	www.secdb.alpinelinux.org/edge/main.yaml
secdb	www.secdb.alpinelinux.org/v3.15/main.yaml
debian	www.debian.org/security/2022/dsa-5108
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/RNT2GFNRLOMKJ5KXM6JIHKBNBFDVZPD3/
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
lists	www.lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZQ4E654ZYUUUQNBKYQFXNK2CV3CPWTM2/
security	www.security.gentoo.org/glsa/202210-10
gitlab	www.gitlab.com/freedesktop-sdk/mirrors/gitlab/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c
gitlab	www.gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0891.json

07 Nov 2023 22:30Current

3.8Low risk

Vulners AI Score3.8

CVSS 3.16.1 - 7.1

CVSS 25.8

EPSS0.00029