[ALSA-2023:2883] Moderate: libtiff security update
Type:
security
Severity:
moderate
Release date:
2023-05-19
Description:
The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): * libtiff: out-of-bounds write in _TIFFmemcpy in libtiff/tif_unix.c (CVE-2022-3627) * libtiff: integer overflow in function TIFFReadRGBATileExt of the file (CVE-2022-3970) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 libtiff-4.0.9-27.el8.aarch64.rpm 9135174f12ee7f13895cda4530f843f031676425bd2a54d456c03455435f75e5
aarch64 libtiff-devel-4.0.9-27.el8.aarch64.rpm 9dbbc3a8ff6810b62265b0f7bcb9790fe21a186ee86ca018ca976a75f1a6a51d
aarch64 libtiff-tools-4.0.9-27.el8.aarch64.rpm ae0fc80cf9c5dc40ed62b5e896bdf186f0fbf662ea73a628626570803287c0ca
i686 libtiff-devel-4.0.9-27.el8.i686.rpm d4fc5b142887d107224ad3bdb094af6772901e5d165231a718e17303114b1e39
i686 libtiff-4.0.9-27.el8.i686.rpm d58848e298d2559cec18af9372fa4cf8a6dfd3ab5cd20f620ef51d07bde89f5d
ppc64le libtiff-tools-4.0.9-27.el8.ppc64le.rpm 1be8c71f67786f88f858f8713313eb6eaf6f34b06f0982b68ec0fe0d4b4467d9
ppc64le libtiff-devel-4.0.9-27.el8.ppc64le.rpm a72eda3d19ccfc947ad533edd7ad13a6fc020cf81531a82a23214ffa41203c1c
ppc64le libtiff-4.0.9-27.el8.ppc64le.rpm c4998a7c05993b6d54ec552509e6ff4b879a0e788dde7e79a3f576594fcd1fd0
s390x libtiff-devel-4.0.9-27.el8.s390x.rpm 5dd2ee74b7befb5cffe2ab3d1e2b0faa96b06e32bdd6b46859e99cbd2ca02eed
s390x libtiff-4.0.9-27.el8.s390x.rpm d558e49e408330831f3775f364d1875b7a5ddc5566d2a827725615fcc4c60dcd
s390x libtiff-tools-4.0.9-27.el8.s390x.rpm d72d4c78cb989c77e2676096497a61c117ad8f8a376b480ec3d13dacfe314771
x86_64 libtiff-devel-4.0.9-27.el8.x86_64.rpm 031f3dfa26004db691b588bb265483b7a29cec1287ebbe25ae37bf2c53bfc338
x86_64 libtiff-4.0.9-27.el8.x86_64.rpm e61276f6b68087a0ff20db4563296c3f6c19ec800a5500dc49d67b6522fc0913
x86_64 libtiff-tools-4.0.9-27.el8.x86_64.rpm fce7edaf7098a152b7aef791b9f00dc36d71db308c962c13fa26408606261ffa
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.