What is CVE-2022-2868?

CVE-2022-2868 is a vulnerability in libtiff's tiffcrop utility that allows for out of bounds read and can cause a crash if a crafted file is supplied to tiffcrop.

What is the severity of CVE-2022-2868?

The severity of CVE-2022-2868 is medium with a CVSS score of 5.5.

How does CVE-2022-2868 affect libtiff?

CVE-2022-2868 affects libtiff versions up to and exclusive of 4.4.0.

How do I fix CVE-2022-2868 on Red Hat?

To fix CVE-2022-2868 on Red Hat, update to libtiff version 4.4.0 or later.

How do I fix CVE-2022-2868 on Debian Linux?

To fix CVE-2022-2868 on Debian Linux, update to tiff version 4.1.0+git191117-2~deb10u8 or later.

Vulnerability/
CVE-2022-2868

medium

5.5

CWE

1284 125 20

16/8/2022

17/8/2022

17/12/2024

CVE-2022-2868: Input Validation

First published: Tue Aug 16 2022(Updated: )

In libtiff's tiffcrop utility (tools/tiffcrop.c), a crafted file could supply an invalid crop_width and/or crop_length, and since these values were computed prior to the sanity check, invalid values could later cause out-of-bounds reads in reverseSamples16bits(). References: 1. <a href="https://gitlab.com/libtiff/libtiff/-/issues/335">https://gitlab.com/libtiff/libtiff/-/issues/335</a> 2. <a href="https://gitlab.com/libtiff/libtiff/-/merge_requests/294/diffs?commit_id=b258ed69a485a9cfb299d9f060eb2a46c54e5903">https://gitlab.com/libtiff/libtiff/-/merge_requests/294/diffs?commit_id=b258ed69a485a9cfb299d9f060eb2a46c54e5903</a>

Credit: secalert@redhat.com secalert@redhat.com

Affected Software	Affected Version	How to fix
Libtiff Libtiff	<4.4.0
Fedoraproject Fedora	=35
Fedoraproject Fedora	=36
Debian Debian Linux	=10.0
Debian Debian Linux	=11.0
debian/tiff	<=4.1.0+git191117-2~deb10u4	4.1.0+git191117-2~deb10u8 4.2.0-1+deb11u4 4.2.0-1+deb11u5 4.5.0-6+deb12u1 4.5.1+git230720-3
redhat/libtiff	<4.4.0	4.4.0
IBM Cognos Analytics	<=12.0.0-12.0.3
IBM Cognos Analytics	<=11.2.0-11.2.4 FP4

Remedy

https://bugzilla.redhat.com/show_bug.cgi?id=2118863

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-7177223

Frequently Asked Questions

What is CVE-2022-2868?
CVE-2022-2868 is a vulnerability in libtiff's tiffcrop utility that allows for out of bounds read and can cause a crash if a crafted file is supplied to tiffcrop.
What is the severity of CVE-2022-2868?
The severity of CVE-2022-2868 is medium with a CVSS score of 5.5.
How does CVE-2022-2868 affect libtiff?
CVE-2022-2868 affects libtiff versions up to and exclusive of 4.4.0.
How do I fix CVE-2022-2868 on Red Hat?
To fix CVE-2022-2868 on Red Hat, update to libtiff version 4.4.0 or later.
How do I fix CVE-2022-2868 on Debian Linux?
To fix CVE-2022-2868 on Debian Linux, update to tiff version 4.1.0+git191117-2~deb10u8 or later.

collector/nvd-index
collector/security-tracker-debian
agent/author
agent/type
agent/first-publish-date
agent/softwarecombine
agent/remedy
agent/weakness
agent/severity
agent/references
agent/description
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2022-2868
agent/software-canonical-lookup
collector/nvd-api
agent/software-canonical-lookup-request
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/tags
agent/event
collector/ibm-support
source/IBM
vendor/libtiff
canonical/libtiff libtiff
vendor/fedoraproject
canonical/fedoraproject fedora
version/fedoraproject fedora/35
version/fedoraproject fedora/36
vendor/debian
canonical/debian debian linux
version/debian debian linux/10.0
version/debian debian linux/11.0
package-manager/debian
package-manager/redhat
vendor/ibm
canonical/ibm cognos analytics
version/ibm cognos analytics/12.0.0-12.0.3
version/ibm cognos analytics/11.2.0-11.2.4 fp4