What the vulnerability does

01Description

libtiff's tiffcrop utility has a improper input validation flaw that can lead to out of bounds read and ultimately cause a crash if an attacker is able to supply a crafted file to tiffcrop.

Key dates

02Disclosure timeline

August 17, 2022 CVE published
August 3, 2024 Record updated