Synopsis: Moderate: libtiff security update Advisory ID: SLSA-2020:3902-1 Issue Date: 2020-10-01 CVE Numbers: CVE-2019-17546 CVE-2019-14973 -- Security Fix(es): * libtiff: integer overflow in _TIFFCheckMalloc and _TIFFCheckRealloc in tif_aux.c (CVE-2019-14973) * libtiff: integer overflow leading to heap-based buffer overflow in tif_getimage.c (CVE-2019-17546) -- SL7 x86_64 libtiff-4.0.3-35.el7.x86_64.rpm libtiff-devel-4.0.3-35.el7.i686.rpm libtiff-4.0.3-35.el7.i686.rpm libtiff-devel-4.0.3-35.el7.x86_64.rpm libtiff-debuginfo-4.0.3-35.el7.i686.rpm libtiff-debuginfo-4.0.3-35.el7.x86_64.rpm libtiff-static-4.0.3-35.el7.i686.rpm libtiff-static-4.0.3-35.el7.x86_64.rpm libtiff-tools-4.0.3-35.el7.x86_64.rpm - Scientific Linux Development Team