ALSA-2025:20956

[ALSA-2025:20956] Important: libtiff security update

Type:

security

Severity:

important

Release date:

2025-11-19

Description:

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files.  

Security Fix(es):  

  * libtiff: LibTIFF Use-After-Free Vulnerability (CVE-2025-8176)
  * libtiff: Libtiff Write-What-Where (CVE-2025-9900)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	libtiff-devel-4.4.0-15.el9_7.2.aarch64.rpm	40434de34b4389af3c5679aaaa28bfcf5a9a8207e906e2961856bd39655c8322
aarch64	libtiff-tools-4.4.0-15.el9_7.2.aarch64.rpm	61c4b59e34cfaaf6b128a6fce67d767be090e56ad68b2c1758ae619e3fac4368
aarch64	libtiff-4.4.0-15.el9_7.2.aarch64.rpm	b8be058f573409068bbebfd5aa78e9600ff8fe4d3ad218281f4d5083741b3135
i686	libtiff-4.4.0-15.el9_7.2.i686.rpm	b21c90e99faf24884f6f9e5523cfe92b60c5740e7e293d6d8cefe74ad236fb30
i686	libtiff-devel-4.4.0-15.el9_7.2.i686.rpm	c939923ee6e96a2c33df34c1e7e3adf5b3b63ca01c2b84ef59591fe441816451
ppc64le	libtiff-tools-4.4.0-15.el9_7.2.ppc64le.rpm	61daf8387fa915000ea2c7f4fcb0dac0dd35b4998c4d401a91b80f4f8abb906c
ppc64le	libtiff-devel-4.4.0-15.el9_7.2.ppc64le.rpm	b37a9db0436fab08c9a9bd35bc4e305d1629101d82951093db1eab91a688f84b
ppc64le	libtiff-4.4.0-15.el9_7.2.ppc64le.rpm	c639af2a18878dd5fa50ac57f1cf1a21daedb4c917a0b2c16c76a87f17953e9e
s390x	libtiff-tools-4.4.0-15.el9_7.2.s390x.rpm	38c00b462f108f99317be9cf5c3407e7c4817fd29dba1173e4908405c70821ff
s390x	libtiff-devel-4.4.0-15.el9_7.2.s390x.rpm	8bf9dfce146e5a7fd2bc955fb2d0471b337131bf11af79823f482fe3f91f19b7
s390x	libtiff-4.4.0-15.el9_7.2.s390x.rpm	b1548cbc448da17ebe6e5b10a5c7b24cb103d6a4b14d6d413fc80c964e29a30c
x86_64	libtiff-tools-4.4.0-15.el9_7.2.x86_64.rpm	54dcc4eb1155efb767664851487ed17c36e167c0feaa17d01292801c88490ed4
x86_64	libtiff-4.4.0-15.el9_7.2.x86_64.rpm	de8912ed8d0aac62df6a3b13811b0d7a25a228577c2f376e2b7828e2c1622f70
x86_64	libtiff-devel-4.4.0-15.el9_7.2.x86_64.rpm	ec559713dfdcfcfb1629a329f01c80d9cf5e934bbb42635658f11d3c4d225939

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.