Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:36734
HistoryAug 18, 2022 - 7:14 a.m.

Denial Of Service (DoS)

2022-08-1807:14:57
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
denial of service
libtiff.so
getcropfffsets
tiffcrop.c
out of bound reads and writes

EPSS

0.001

Percentile

27.8%

libtiff.so is vulnerable to denial of service.The vulnerability exists ingetcropfffsets function intiffcrop.c,which allows an attacker to send crafted file leading to out of bound reads and writes.