SUSE: TIFF Low Segmentation Fault Memory Leak Issue 2025:03345-1

suse

September 24, 2025

* bsc#1247582 * bsc#1248117 * bsc#1248330 Cross-References:

Summary

## This update for tiff fixes the following issues: * CVE-2025-9165: local execution manipulation leading to memory leak (bsc#1248330). * CVE-2025-8534: null pointer dereference in function PS_Lvl2page (bsc#1247582). * CVE-2025-8961: segmentation fault via main function of tiffcrop utility (bsc#1248117). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Micro for Rancher 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3345=1 * SUSE Linux Enterprise Micro 5.3 zypper in -t patch SUSE-SLE-Micro-5.3-2025-3345=1 * SUSE Linux Enterprise Micro for Rancher 5.4 zypper in -t patch SUSE-SLE-Micro-5.4-2025-3345=1

Topics Covered

security advisory SuSE local execution memory leak low TIFF

References

* bsc#1247582

* bsc#1248117

* bsc#1248330

Cross-

* CVE-2025-8534

* CVE-2025-8961

* CVE-2025-9165

CVSS scores:

* CVE-2025-8534 ( SUSE ): 2.0

CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

* CVE-2025-8534 ( SUSE ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

* CVE-2025-8534 ( NVD ): 1.1

CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X

* CVE-2025-8534 ( NVD ): 2.5 CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L

* CVE-2025-8961 ( SUSE ): 4.8

CVSS:4.0/AV:L/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

* CVE-2025-8961 ( SUSE ): 3.3 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

* CVE-2025-8961 ( NVD ): 1.9

Severity

low

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2025:03345-1

Release Date: 2025-09-24T13:56:00Z

Rating: low

Topics Covered

security advisory SuSE local execution memory leak low TIFF

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

SUSE: TIFF Low Segmentation Fault Memory Leak Issue 2025:03345-1

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

SUSE: TIFF Low Segmentation Fault Memory Leak Issue 2025:03345-1

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!