libtiff-4.0.9-34.el8_10

エラータID: AXSA:2025-9907:01

Release date: 
Friday, May 9, 2025 - 18:10
Subject: 
libtiff-4.0.9-34.el8_10
Affected Channels: 
Asianux Server 8 for x86_64
Severity: 
Moderate
Description: 

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files.

Security Fix(es):

* libtiff: Heap-based buffer overflow in tools/pal2rgb.c can lead to denial of service (CVE-2017-17095)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

CVE-2017-17095
tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.

Solution: 

Update packages.

CVEs: 
CVE-2017-17095
tools/pal2rgb.c in pal2rgb in LibTIFF 4.0.9 allows remote attackers to cause a denial of service (TIFFSetupStrips heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted TIFF file.
Additional Info: 

N/A

Download: 

SRPMS
  1. libtiff-4.0.9-34.el8_10.src.rpm
    MD5: f28819b3c4dde39116a8eb1093c243de
    SHA-256: 2342f08b870263174d1d9389e6749789f535526e12330eb851fe4402d4d50c7a
    Size: 2.28 MB

Asianux Server 8 for x86_64
  1. libtiff-4.0.9-34.el8_10.i686.rpm
    MD5: 374f0807908be729d5d76ae8fc67788b
    SHA-256: 1a1dcc39c0820d6ebb7f03382a0b8bb8816c9b1e7e1948641ba6f52c36b837f9
    Size: 203.99 kB
  2. libtiff-4.0.9-34.el8_10.x86_64.rpm
    MD5: 7c1c214e7d2111af6216e51b5fcf9c53
    SHA-256: 4faf7505449d175a1fcb9aeef2a39997e07b6b69ec0ba90801b8390ce57f9520
    Size: 189.35 kB
  3. libtiff-devel-4.0.9-34.el8_10.i686.rpm
    MD5: f0944ac299f4add7e93baa8f1de57109
    SHA-256: eac93106d5a5ef8782ebbbd4b0e7bff8d73a55a863e97a40a783cd8b53d69388
    Size: 511.99 kB
  4. libtiff-devel-4.0.9-34.el8_10.x86_64.rpm
    MD5: 720f1ca3354b432cce6feeb6382d4c18
    SHA-256: 28d4ddf43731c1a27ff1365ab06210f6fdc374de9331f1c3ef55b1d3da96ef97
    Size: 511.99 kB
  5. libtiff-tools-4.0.9-34.el8_10.x86_64.rpm
    MD5: d276671934f29e9e0ab67731221f3e02
    SHA-256: 71c32e2cec0f4afcc6bf48ed482b5c81c769b4b0119195c6f4de4c740294c669
    Size: 255.42 kB