Staging Environment: Content and features may be unstable or change without notice.
Search for packages
Package details: pkg:conan/libtiff@4.0.3-35
purl pkg:conan/libtiff@4.0.3-35
Tags Ghost
Next non-vulnerable version 4.7.0
Latest non-vulnerable version 4.7.0
Risk 1.9
Vulnerabilities affecting this package (1)
Vulnerability Summary Fixed by
VCID-qwf8-kycx-nfd2
Aliases:
CVE-2022-34266
The libtiff-4.0.3-35.amzn2.0.1 package for LibTIFF on Amazon Linux 2 allows attackers to cause a denial of service (application crash), a different vulnerability than CVE-2022-0562. When processing a malicious TIFF file, an invalid range may be passed as an argument to the memset() function within TIFFFetchStripThing() in tif_dirread.c. This will cause TIFFFetchStripThing() to segfault after use of an uninitialized resource.
4.0.8
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2026-04-03T21:27:20.971308+00:00 GitLab Importer Affected by VCID-qwf8-kycx-nfd2 https://gitlab.com/gitlab-org/advisories-community/-/blob/main/conan/libtiff/CVE-2022-34266.yml 38.1.0