Vulnerability CVE-2022-0562

Vulnerability Name:

CVE-2022-0562 (CCN-219515)

Assigned:

2022-02-10

Published:

2022-02-10

Updated:

2022-11-16

Summary:

Null source pointer passed as an argument to memcpy() function within TIFFReadDirectory() in tif_dirread.c in libtiff versions from 4.0 to 4.3.0 could lead to Denial of Service via crafted TIFF file. For users that compile libtiff from sources, a fix is available with commit 561599c.

CVSS v3 Severity:

5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
5.0 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
5.0 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.5 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
5.0 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-476

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2022-0562

Source: CCN
Type: LibTIFF Web site
LibTIFF

Source: XF
Type: UNKNOWN
libtiff-cve20220562-dos(219515)

Source: MISC
Type: Patch, Third Party Advisory
https://gitlab.com/gitlab-org/build/omnibus-mirror/libtiff/-/commit/561599c99f987dc32ae110370cfdd7df7975586b

Source: CCN
Type: GitLab Web site
CVE-2022-0562.json

Source: CONFIRM
Type: Third Party Advisory
https://gitlab.com/gitlab-org/cves/-/blob/master/2022/CVE-2022-0562.json

Source: CCN
Type: LibTIFF GIT Repository
libtiff

Source: MISC
Type: Exploit, Issue Tracking, Patch, Third Party Advisory
https://gitlab.com/libtiff/libtiff/-/issues/362

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20220306 [SECURITY] [DLA 2932-1] tiff security update

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2022-df1df6debd

Source: GENTOO
Type: Third Party Advisory
GLSA-202210-10

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20220318-0001/

Source: DEBIAN
Type: Third Party Advisory
DSA-5108

Source: CCN
Type: IBM Security Bulletin 6843945 (App Connect Enterprise Certified Container)
IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance may be vulnerable to denial of service due to CVE-2022-0562

Source: CCN
Type: IBM Security Bulletin 6855097 (Watson Discovery)
IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in LibTIFF

Source: CCN
Type: IBM Security Bulletin 6921283 (Robotic Process Automation for Cloud Pak)
Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak.

Vulnerable Configuration:

Configuration 1:

cpe:/a:libtiff:libtiff:*:*:*:*:*:*:*:* (Version >= 4.0.0 and <= 4.3.0)

Configuration 2:

cpe:/o:fedoraproject:fedora:35:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:11.0:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration RedHat 3:

cpe:/a:redhat:enterprise_linux:8::crb:*:*:*:*:*

Configuration RedHat 4:

cpe:/a:redhat:enterprise_linux:9:*:*:*:*:*:*:*

Configuration RedHat 5:

cpe:/a:redhat:enterprise_linux:9::appstream:*:*:*:*:*

Configuration RedHat 6:

cpe:/a:redhat:enterprise_linux:9::crb:*:*:*:*:*

Configuration CCN 1:

cpe:/a:libtiff:libtiff:4.0.2:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:4.0.3:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:3.9.5:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:3.9.6:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:3.9.7:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:4.0.6:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:4.0.5:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:4.0.7:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:4.0.8:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:4.0.9:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:4.0.10:*:*:*:*:*:*:*

OR cpe:/a:libtiff:libtiff:4.3.0:*:*:*:*:*:*:*

AND

cpe:/a:ibm:app_connect_enterprise_certified_container:4.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:robotic_process_automation_for_cloud_pak:21.0.1:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7682	P	libtiff-devel-4.0.9-150000.45.25.1 on GA media (Moderate)	2023-06-12
oval:com.redhat.rhsa:def:20228194	P	RHSA-2022:8194: libtiff security update (Moderate)	2022-11-15
oval:com.redhat.rhsa:def:20227585	P	RHSA-2022:7585: libtiff security update (Moderate)	2022-11-08
oval:org.opensuse.security:def:3737	P	pam_krb5-2.4.4-4.4 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3605	P	libical1-1.0.1-16.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:119592	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:95367	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:904	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:118911	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:500	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:1073	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:119217	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:42393	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:1517	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:119407	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:95235	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:118721	P	Security update for tiff (Important)	2022-05-30
oval:org.opensuse.security:def:5238	P	Security update for tiff (Important)	2022-05-16
oval:org.opensuse.security:def:6036	P	Security update for tiff (Important)	2022-05-16

BACK