[CLSA-2026:1772622084] libtiff: Fix of CVE-2025-61144
Type:
security
Severity:
Important
Release date:
2026-03-04 11:01:29 UTC
Description:
- CVE-2025-61144: add MAX_SAMPLES bounds check in combineSeparateSamplesBytes to prevent stack-based buffer overflow when spp exceeds MAX_SAMPLES in tiffcrop
Updated packages:
  • libtiff-4.4.0-8.el9_2.tuxcare.els7.i686.rpm
    sha:d4cc664c01881e202d3d1c667a4bda4b2637377daa0716163d8e4329be77f46f
  • libtiff-4.4.0-8.el9_2.tuxcare.els7.x86_64.rpm
    sha:1cb371947ddc6b05231fe657c3f3c4191d4f14480c819342e3f9ef6fdf2e8cf1
  • libtiff-devel-4.4.0-8.el9_2.tuxcare.els7.i686.rpm
    sha:062359d0e6ed2972228fb37c6fb826fb7a5d8e9a6e19938962961e1860b9a3eb
  • libtiff-devel-4.4.0-8.el9_2.tuxcare.els7.x86_64.rpm
    sha:819a81f62698f8fd814aadfabd522c0fe46e9fbb24e96939a64639996bf5db0c
  • libtiff-static-4.4.0-8.el9_2.tuxcare.els7.x86_64.rpm
    sha:01208cf9770b0502715b6201d31142fdae3032fe0899b7ca458d84002a43f54d
  • libtiff-tools-4.4.0-8.el9_2.tuxcare.els7.x86_64.rpm
    sha:30f645b72af4337eafc452bec6438de9a0d51cb9509a77a130030abc16016959
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.