CLSA-2026-1776349106
See a problem?- Import Source
- https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/almalinux9.6esu/CLSA-2026-1776349106.json
- JSON Data
- https://api.osv.dev/v1/vulns/CLSA-2026-1776349106
- Upstream
- Published
- 2026-04-16T14:18:31Z
- Modified
- 2026-06-01T00:32:47.918846422Z
- Summary
- libtiff: Fix of 5 CVEs
- Details
-
- CVE-2022-34526: fix stack buffer overflow in _TIFFVGetField via invalid codec-specific tag
- CVE-2023-2908: fix null pointer dereference in countInkNamesString in tif_dir.c
- CVE-2023-6277: prevent out-of-memory attacks by comparing allocation size with file size
- CVE-2023-1916: fix out-of-bounds read in extractImageSection in tiffcrop.c
- CVE-2023-3164: fix heap-buffer-overflow in extractImageSection in tiffcrop.c
- References
Affected packages
TuxCare:AlmaLinux:9.6 / libtiff
Package
- Name
- libtiff
- Purl
- pkg:rpm/tuxcare/libtiff?distro=almalinux-9.6
TuxCare:AlmaLinux:9.6 / libtiff-devel
Package
- Name
- libtiff-devel
- Purl
- pkg:rpm/tuxcare/libtiff-devel?distro=almalinux-9.6
TuxCare:AlmaLinux:9.6 / libtiff-static
Package
- Name
- libtiff-static
- Purl
- pkg:rpm/tuxcare/libtiff-static?distro=almalinux-9.6