Updated libtiff packages fix security vulnerability
Publication date: 02 Feb 2022Modification date: 02 Feb 2022
Type: security
Affected Mageia releases : 8
CVE: CVE-2022-22844
Description
LibTIFF 4.3.0 has an out-of-bounds read in _TIFFmemcpy in tif_unix.c in certain situations involving a custom tag and 0x0200 as the second word of the DE field. (CVE-2022-22844)
References
SRPMS
8/core
- libtiff-4.2.0-1.1.mga8