Null source pointer passed as an argument to memcpy() function within TIFFFetchNormalTag () in tif_dirread.c in libtiff versions up to 4.3.0 could lead to Denial of Service via crafted TIFF file.
{ "vanir_signatures": [ { "target": { "function": "TIFFFetchNormalTag", "file": "libtiff/tif_dirread.c" }, "signature_type": "Function", "source": "https://gitlab.com/libtiff/libtiff@a95b799f65064e4ba2e2dfc206808f86faf93e85", "id": "CVE-2022-0908-76974f36", "signature_version": "v1", "deprecated": false, "digest": { "function_hash": "168812719152971515056780783991793843926", "length": 16247.0 } }, { "target": { "file": "libtiff/tif_dirread.c" }, "signature_type": "Line", "source": "https://gitlab.com/libtiff/libtiff@a95b799f65064e4ba2e2dfc206808f86faf93e85", "id": "CVE-2022-0908-ec29a9a6", "signature_version": "v1", "deprecated": false, "digest": { "line_hashes": [ "272970843925008190182951499459945272455", "122110487461877918842174747274015169028", "10834632712379131486262924642439305862", "36321532223391568495152530717173528658" ], "threshold": 0.9 } } ] }