CLSA-2025-1758644444

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1758644444.json
JSON Data
https://api.test.osv.dev/v1/vulns/CLSA-2025-1758644444
Upstream
Published
2025-09-23T16:20:48Z
Modified
2026-05-27T11:18:23.867933820Z
Summary
libtiff: Fix of 2 CVEs
Details
  • CVE-2025-8176: fix use after free in tools/tiffmedian.c
  • CVE-2025-8177: fix buffer overflow in tools/thumbnail.c
References

Affected packages

TuxCare:CentOS:7 / libtiff

Package

Name
libtiff
Purl
pkg:rpm/tuxcare/libtiff?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.0.3-35.el7.tuxcare.els4

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1758644444.json"

TuxCare:CentOS:7 / libtiff-devel

Package

Name
libtiff-devel
Purl
pkg:rpm/tuxcare/libtiff-devel?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.0.3-35.el7.tuxcare.els4

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1758644444.json"

TuxCare:CentOS:7 / libtiff-static

Package

Name
libtiff-static
Purl
pkg:rpm/tuxcare/libtiff-static?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.0.3-35.el7.tuxcare.els4

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1758644444.json"

TuxCare:CentOS:7 / libtiff-tools

Package

Name
libtiff-tools
Purl
pkg:rpm/tuxcare/libtiff-tools?distro=centos-7

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
4.0.3-35.el7.tuxcare.els4

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/centos7els/CLSA-2025-1758644444.json"