(RHSA-2024:6360) Moderate: libtiff security update

2024-09-0418:07:30

access.redhat.com

moderate

libtiff

security update

null pointer

dereference

cvss score

unix

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

9.3

Confidence

High

JSON

The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files.

Security Fix(es):

libtiff: NULL pointer dereference in tif_dirinfo.c (CVE-2024-7006)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

OSVersionArchitecturePackageVersionFilename
RedHat9ppc64lelibtiff-devel< 4.4.0-8.el9_2.1libtiff-devel-4.4.0-8.el9_2.1.ppc64le.rpm
RedHat9x86_64libtiff-tools< 4.4.0-8.el9_2.1libtiff-tools-4.4.0-8.el9_2.1.x86_64.rpm
RedHat9i686libtiff< 4.4.0-8.el9_2.1libtiff-4.4.0-8.el9_2.1.i686.rpm
RedHat9i686libtiff-debuginfo< 4.4.0-8.el9_2.1libtiff-debuginfo-4.4.0-8.el9_2.1.i686.rpm
RedHat9s390xlibtiff< 4.4.0-8.el9_2.1libtiff-4.4.0-8.el9_2.1.s390x.rpm
RedHat9aarch64libtiff-tools-debuginfo< 4.4.0-8.el9_2.1libtiff-tools-debuginfo-4.4.0-8.el9_2.1.aarch64.rpm
RedHat9ppc64lelibtiff< 4.4.0-8.el9_2.1libtiff-4.4.0-8.el9_2.1.ppc64le.rpm
RedHat9ppc64lelibtiff-tools-debuginfo< 4.4.0-8.el9_2.1libtiff-tools-debuginfo-4.4.0-8.el9_2.1.ppc64le.rpm
RedHat9i686libtiff-tools-debuginfo< 4.4.0-8.el9_2.1libtiff-tools-debuginfo-4.4.0-8.el9_2.1.i686.rpm
RedHat9aarch64libtiff-debuginfo< 4.4.0-8.el9_2.1libtiff-debuginfo-4.4.0-8.el9_2.1.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
RedHat	9	ppc64le	libtiff-devel	< 4.4.0-8.el9_2.1	libtiff-devel-4.4.0-8.el9_2.1.ppc64le.rpm
RedHat	9	x86_64	libtiff-tools	< 4.4.0-8.el9_2.1	libtiff-tools-4.4.0-8.el9_2.1.x86_64.rpm
RedHat	9	i686	libtiff	< 4.4.0-8.el9_2.1	libtiff-4.4.0-8.el9_2.1.i686.rpm
RedHat	9	i686	libtiff-debuginfo	< 4.4.0-8.el9_2.1	libtiff-debuginfo-4.4.0-8.el9_2.1.i686.rpm
RedHat	9	s390x	libtiff	< 4.4.0-8.el9_2.1	libtiff-4.4.0-8.el9_2.1.s390x.rpm
RedHat	9	aarch64	libtiff-tools-debuginfo	< 4.4.0-8.el9_2.1	libtiff-tools-debuginfo-4.4.0-8.el9_2.1.aarch64.rpm
RedHat	9	ppc64le	libtiff	< 4.4.0-8.el9_2.1	libtiff-4.4.0-8.el9_2.1.ppc64le.rpm
RedHat	9	ppc64le	libtiff-tools-debuginfo	< 4.4.0-8.el9_2.1	libtiff-tools-debuginfo-4.4.0-8.el9_2.1.ppc64le.rpm
RedHat	9	i686	libtiff-tools-debuginfo	< 4.4.0-8.el9_2.1	libtiff-tools-debuginfo-4.4.0-8.el9_2.1.i686.rpm
RedHat	9	aarch64	libtiff-debuginfo	< 4.4.0-8.el9_2.1	libtiff-debuginfo-4.4.0-8.el9_2.1.aarch64.rpm