A stack overflow was discovered in the _TIFFVGetField function of Tiffsplit v4.4.0. This vulnerability allows attackers to cause a Denial of Service (DoS) via a crafted TIFF file. https://gitlab.com/libtiff/libtiff/-/issues/433
Created iv tracking bugs for this issue: Affects: fedora-all [bug 2112759] Created libtiff tracking bugs for this issue: Affects: fedora-all [bug 2112760] Created mingw-libtiff tracking bugs for this issue: Affects: fedora-all [bug 2112762]
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2022-34526