CVE-2022-2868

Summary

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop.

Affected Software

VendorProductVersion RangeStatus
n/alibtifflibtiff 4.4.0rc1affected

Weaknesses

  • CWE-20: CWE-20->CWE-125

ADP Enrichment

CVE Program Container

Additional References

References