An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to cause a denial of service via crafted TIFF file. References: https://gitlab.com/libtiff/libtiff/-/issues/455 https://gitlab.com/libtiff/libtiff/-/merge_requests/386
Created libtiff tracking bugs for this issue: Affects: fedora-all [bug 2234972] Created mingw-libtiff tracking bugs for this issue: Affects: fedora-all [bug 2234973]
Created iv tracking bugs for this issue: Affects: fedora-all [bug 2235769]
This issue has been addressed in the following products: Red Hat Enterprise Linux 9 Via RHSA-2024:2289 https://access.redhat.com/errata/RHSA-2024:2289