Release date:
2026-05-08 19:37:15 UTC
Description:
- CVE-2023-52355: cap libtiff allocations via TIFFOpenOptionsSetMaxSingleMemAlloc
and add -M memory-limit option to tiff2ps, tiffcp, tiffinfo, and tiffsplit so
that crafted TIFF files can no longer trigger out-of-memory denial of service
Updated packages:
-
libtiff-4.0.3-35.amzn2.0.30.tuxcare.els1.i686.rpm
sha:94beeee1d8246418c4f86693007414d9e438428eef2f8de2598cb5cb4426c60a
-
libtiff-4.0.3-35.amzn2.0.30.tuxcare.els1.x86_64.rpm
sha:e50235f1a2243b2a22c9ec59989ffede9186fc5d4fa6a0c5ea3c86295cdac444
-
libtiff-devel-4.0.3-35.amzn2.0.30.tuxcare.els1.x86_64.rpm
sha:ff501d2d553e17e7432003e5a98f70322ca7d868567d77824a9123406df6c634
-
libtiff-static-4.0.3-35.amzn2.0.30.tuxcare.els1.x86_64.rpm
sha:e788d2cacec82db7aa73b7d48103754f778a165bcc1823932aa40c20537f6d06
-
libtiff-tools-4.0.3-35.amzn2.0.30.tuxcare.els1.x86_64.rpm
sha:c36bde51178af3f395fd4f1e83e84eea4b7b2856973246381f3db5520af9c5e5
Notes:
This page is generated automatically and has not been checked for errors. For clarification or
corrections please contact the
CloudLinux Packaging Team.
