Alerts This Week
Warning Icon 1 640
Alerts This Week
Warning Icon 1 640

Oracle Linux 7: ELSA-2025-21407 libtiff Important Buffer Overflow Issues

oracle
Calendar Grey December 3, 2025
Oracle Linux Logo Esm H88
Oracle Linux 7 updates available for libtiff addressing important buffer overflow issues and related CVEs.
The following updated rpms for Oracle Linux 7 have been uploaded to the Unbreakable Linux Network:

Summary

[4.0.3-35.0.1] - fix CVE-2025-8176: prevent skipping first line in tiffdither and tiffmedian tools [Orabug: 38658716] - fix CVE-2025-8177: buffer overflow thumbnail setrow [Orabug: 38658716] - fix CVE-2025-9900: buffer underflow crash in TIFFReadRGBAImageOriented() [Orabug: 38658716]

SRPMs

http://oss.oracle.com/ol7/SRPMS-updates/libtiff-4.0.3-35.0.1.el7.src.rpm

x86_64

libtiff-4.0.3-35.0.1.el7.i686.rpm libtiff-4.0.3-35.0.1.el7.x86_64.rpm libtiff-devel-4.0.3-35.0.1.el7.i686.rpm libtiff-devel-4.0.3-35.0.1.el7.x86_64.rpm libtiff-static-4.0.3-35.0.1.el7.i686.rpm libtiff-static-4.0.3-35.0.1.el7.x86_64.rpm libtiff-tools-4.0.3-35.0.1.el7.x86_64.rpm

aarch64

Severity
important
Lowest
Low
Medium
High
Critical

Related CVEs: CVE-2025-8176 CVE-2025-8177 CVE-2025-9900

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here