[CLSA-2025:1765546516] libtiff: Fix of CVE-2023-52356
Type:
security
Severity:
Important
Release date:
2025-12-12 13:35:19 UTC
Description:
- CVE-2023-52356: add col/row validation in TIFFReadRGBAStrip/TIFFReadRGBATile to prevent heap-buffer overflow and potential DoS
Updated packages:
  • libtiff-4.4.0-13.el9_6.2.tuxcare.els2.i686.rpm
    sha:74ca0cf539125cfcea4efd368cb530b1792cb839267802f67f839d4851c4bea0
  • libtiff-4.4.0-13.el9_6.2.tuxcare.els2.x86_64.rpm
    sha:5adb15aa28fa211e33535f20760cf39434363ac0d2e644e3ad1d2afc09bd6edd
  • libtiff-devel-4.4.0-13.el9_6.2.tuxcare.els2.i686.rpm
    sha:3bcb8934430b3a29deefbaba13ff7d87af1839b3bd2f5ec737915ebffeb9d82e
  • libtiff-devel-4.4.0-13.el9_6.2.tuxcare.els2.x86_64.rpm
    sha:14e400cf136b98023d325ddcdb065fe1b6c49678c311187f059a2b3b4a001b6b
  • libtiff-static-4.4.0-13.el9_6.2.tuxcare.els2.x86_64.rpm
    sha:64ec539dc9c93cb0a62530624a919c900c57f12caeb11849a3003293c5d60d81
  • libtiff-tools-4.4.0-13.el9_6.2.tuxcare.els2.x86_64.rpm
    sha:1dda4fe81c965d1768c82283a05738b0c063e7befbeee2b09f3a46f49dc5b6b7
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.