vulnerability
Red Hat: CVE-2022-2868: Invalid crop_width and/or crop_length could cause an out-of-bounds read in reverseSamples16bits() (Multiple Advisories)
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:N/I:N/A:C) | Aug 17, 2022 | Jan 13, 2023 | Jun 12, 2026 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:N/I:N/A:C)
Published
Aug 17, 2022
Added
Jan 13, 2023
Modified
Jun 12, 2026
Description
An improper input validation flaw was found in libtiff's tiffcrop utility. This issue can lead to an out-of-bounds read and cause a crash if an attacker can supply a crafted file to tiffcrop.
Solutions
redhat-upgrade-libtiffredhat-upgrade-libtiff-debuginforedhat-upgrade-libtiff-debugsourceredhat-upgrade-libtiff-develredhat-upgrade-libtiff-toolsredhat-upgrade-libtiff-tools-debuginfo
Rapid7 Labs
2026 Global Threat Landscape Report
The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.