[CLSA-2026:1773829377] libtiff: Fix of CVE-2025-61145
Type:
security
Severity:
Moderate
Release date:
2026-03-18 10:23:01 UTC
Description:
- CVE-2025-61145: fix double-free and memory leak in tiffcrop, avoid dangling pointer in loadImage by clearing *read_ptr after free
Updated packages:
  • libtiff-4.4.0-8.el9_2.tuxcare.els8.i686.rpm
    sha:883ba75249fdf817210f16f3b70fe359921b07cc19c6db28a2b74e1b71c3fcef
  • libtiff-4.4.0-8.el9_2.tuxcare.els8.x86_64.rpm
    sha:f69a955ba58514b5f1b97854905de6bc1410a885f1b9255a06a8bf1d4affed3a
  • libtiff-devel-4.4.0-8.el9_2.tuxcare.els8.i686.rpm
    sha:d0239df2eac6c1f32efb1ce7cc67b81ae54abe35f69220c6d091e5d6f21a5ed9
  • libtiff-devel-4.4.0-8.el9_2.tuxcare.els8.x86_64.rpm
    sha:87bd322ec0454c3ea9c516f1c0301ec95df05ea1468188460fee845c91935be6
  • libtiff-static-4.4.0-8.el9_2.tuxcare.els8.x86_64.rpm
    sha:d23593c1a55c82c582062e3059fe152bd6ddc72792c161287cd8e85aa604b50a
  • libtiff-tools-4.4.0-8.el9_2.tuxcare.els8.x86_64.rpm
    sha:704711a88ed64b301608652e4e56e3b75c8565c2a1d53490aa935f5fb48f4a4c
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.