Important: libtiff

🗓️ 22 Mar 2023 00:00:00Reported by AmazonType

LibTIFF vulnerabilities allow attackers to exploit crafted TIFF files, causing crashes and denial of service.

Reporter	Title	Published	Views	Family All 1156
IBM Security Bulletins	Security Bulletin: IBM Cognos Analytics is affected by multiple vulnerabilities	26 Mar 202504:07	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security vulnerabilities are addressed with IBM Cloud Pak for Business Automation 24.0.1-IF004 (June 2025)	2 Jul 202507:00	–	ibm
IBM Security Bulletins	Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities	3 Jun 202511:35	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance may be vulnerable to denial of service due to CVE-2022-0924	1 Dec 202217:22	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Vulnerabilities in CloudPak for Watson AIOPs	24 Feb 202319:49	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in LibTIFF	30 Jan 202316:11	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in LibTIFF	30 Jan 202316:23	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance may be vulnerable to denial of service due to CVE-2022-0562	1 Dec 202217:30	–	ibm
IBM Security Bulletins	Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance may be vulnerable to arbitrary code execution due to CVE-2022-0891	1 Dec 202217:17	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Discovery Cartridge for IBM Cloud Pak for Data affected by vulnerability in LibTIFF	27 Feb 202315:06	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Amazon Linux	2	aarch64	libtiff	4.4.0-4.amzn2023.0.3	libtiff-4.4.0-4.amzn2023.0.3.aarch64.rpm
Amazon Linux	2	x86_64	libtiff	4.4.0-4.amzn2023.0.3	libtiff-4.4.0-4.amzn2023.0.3.x86_64.rpm
Amazon Linux	2	aarch64	libtiff-debuginfo	4.4.0-4.amzn2023.0.3	libtiff-debuginfo-4.4.0-4.amzn2023.0.3.aarch64.rpm
Amazon Linux	2	x86_64	libtiff-debuginfo	4.4.0-4.amzn2023.0.3	libtiff-debuginfo-4.4.0-4.amzn2023.0.3.x86_64.rpm
Amazon Linux	2	aarch64	libtiff-debugsource	4.4.0-4.amzn2023.0.3	libtiff-debugsource-4.4.0-4.amzn2023.0.3.aarch64.rpm
Amazon Linux	2	x86_64	libtiff-debugsource	4.4.0-4.amzn2023.0.3	libtiff-debugsource-4.4.0-4.amzn2023.0.3.x86_64.rpm
Amazon Linux	2	aarch64	libtiff-devel	4.4.0-4.amzn2023.0.3	libtiff-devel-4.4.0-4.amzn2023.0.3.aarch64.rpm
Amazon Linux	2	x86_64	libtiff-devel	4.4.0-4.amzn2023.0.3	libtiff-devel-4.4.0-4.amzn2023.0.3.x86_64.rpm
Amazon Linux	2	aarch64	libtiff-static	4.4.0-4.amzn2023.0.3	libtiff-static-4.4.0-4.amzn2023.0.3.aarch64.rpm
Amazon Linux	2	x86_64	libtiff-static	4.4.0-4.amzn2023.0.3	libtiff-static-4.4.0-4.amzn2023.0.3.x86_64.rpm

22 Mar 2023 00:00Current

7.1High risk

Vulners AI Score7.1

CVSS 25.8

CVSS 3.17.7 - 8.8

EPSS0.00332

SSVC