[CLSA-2026:1776351395] libtiff: Fix of 2 CVEs
Type:
security
Severity:
('Important', ['ELSCVE-90056', 'ELSCVE-89907'])
Release date:
2026-04-16 14:56:39 UTC
Description:
- CVE-2022-3970: fix integer overflow in TIFFReadRGBATileExt on strips/tiles > 2 GB - CVE-2022-0891: fix heap buffer overflow in extractImageSection in tiffcrop
Updated packages:
  • libtiff-4.0.3-35.el7.tuxcare.els8.i686.rpm
    sha:379655080bf01cfb90c6dfb530e384ca40972b8fce577af450bbd52713c1b1a4
  • libtiff-4.0.3-35.el7.tuxcare.els8.x86_64.rpm
    sha:acb614170c0118317cbc8281b19c0f0ac7229d1996b613cd9749e1dc3c753272
  • libtiff-devel-4.0.3-35.el7.tuxcare.els8.i686.rpm
    sha:c331869dac0a4a8cf5891c63d83dd82d5a8c647dc4ef9a3716284eacd57846e6
  • libtiff-devel-4.0.3-35.el7.tuxcare.els8.x86_64.rpm
    sha:ac26af2d0aaa974862b3ff6a89276b59624c8bdaa24c2dd3812f7ade6b69566f
  • libtiff-static-4.0.3-35.el7.tuxcare.els8.i686.rpm
    sha:54448e34584ddca656adf26d705f26d027ef62e19adbb37dde8404cef1d41cd6
  • libtiff-static-4.0.3-35.el7.tuxcare.els8.x86_64.rpm
    sha:8e5df9706e061e18deedc3060854dff0f7a1257b2543999f1cade303a4abf1f7
  • libtiff-tools-4.0.3-35.el7.tuxcare.els8.x86_64.rpm
    sha:61e439f3107789be6a3b301dd0c94ba6934e9ee81a840b4b8626761f881603de
Notes:
This page is generated automatically and has not been checked for errors. For clarification or corrections please contact the CloudLinux Packaging Team.