Release date:
2025-04-08 12:46:28 UTC
Description:
- CVE-2024-7006: check return value of _TIFFCreateAnonField() to avoid potential DoS via
memory allocation failures
- CVE-2023-6228: validate input image codec in tiffcp to prevent heap-based buffer
overflow and potential application crash
- CVE-2022-40090: improve IFD loop handling in TIFFReadDirectory to prevent DoS via
crafted TIFF files
- CVE-2023-2731: handle missing end-of-information marker in LZWDecode() to prevent
NULL pointer dereference and potential DoS
Updated packages:
-
libtiff-4.4.0-8.el9_2.tuxcare.els1.i686.rpm
sha:e9caf03cea418f78493bce1c30c1872ef28fe66364a7a61e81e88866bb30c998
-
libtiff-4.4.0-8.el9_2.tuxcare.els1.x86_64.rpm
sha:8f8b1c21434a5e6c30e2d78bd73d15e4b241890b3063e439aeacb406483fdcf3
-
libtiff-devel-4.4.0-8.el9_2.tuxcare.els1.i686.rpm
sha:7f2c3d43b80bfff84b4f1fdcd0635adc7564711cb2245783a4b23a66ad19a9b8
-
libtiff-devel-4.4.0-8.el9_2.tuxcare.els1.x86_64.rpm
sha:8b3e01d323db6ba033d6b080c49021d0156f7dfb1061375338756e99594a4e51
-
libtiff-static-4.4.0-8.el9_2.tuxcare.els1.x86_64.rpm
sha:119743a309217777d3e91f0d7b53df52e70ce8b54cc6a1b814107b21e10a64ec
-
libtiff-tools-4.4.0-8.el9_2.tuxcare.els1.x86_64.rpm
sha:7a134929bb335f92db8836e8d29ad450ca9e69c294c71d052c15e147a6cd913d
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
