A signed integer overflow vulnerability (CVE-2026-4775, CVSS 7.8 High) in libtiff allows arbitrary code execution or denial of service via specially crafted TIFF files. The vulnerability affects libtiff versions up to and including those shipped with Red Hat Enterprise Linux 6.0 and 7.0, as well as Debian Linux 11.0. Red Hat has released patched packages, such as libtiff-4.4.0-15.el9_7.3 for RHEL 9, to address this issue.
Red Hat Product Errata RHSA-2026:12271 - Security Advisory Issued: 2026-04-30 Updated: 2026-04-30 RHSA-2026:12271 - Security Advisory Overview Updated Packages Synopsis Important: libtiff security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libtiff is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing (CVE-2026-4775) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x Fixes BZ - 2450768 - CVE-2026-4775 libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVEs CVE-2026-4775 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM libtiff-4.4.0-15.el9_7.3.src.rpm SHA-256: d0dfe549b4da13591aab3b865ba19ed0b6021a7eb2dbddc752966c86d5e12482 x86_64 libtiff-4.4.0-15.el9_7.3.i686.rpm SHA-256: de71ab202ca5c404943b33796bec26105d1f8fda0f810868610261a9f6f5bf43 libtiff-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: 7d68b57ff7a7b4f2bde5575067d325a69102280017e38c6b46f327d9d7ebd0fd libtiff-debuginfo-4.4.0-15.el9_7.3.i686.rpm SHA-256: 93df2511ca293a1eb9b481f0c4a4693a605fccc25c72e31904ea72d6a7226ac9 libtiff-debuginfo-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: d4c6bbc4352548739e4264c21a9ff18bf1a326f158947c33ed6b372c8076f62e libtiff-debugsource-4.4.0-15.el9_7.3.i686.rpm SHA-256: 47b8603a57f01f9924b3fdeef4e97ec1883618539af9e3d6601501970d94fafc libtiff-debugsource-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: afeea5918fd870bf110cebea5de0c19544d2e68d1e93a76515c32620dd9f1edb libtiff-devel-4.4.0-15.el9_7.3.i686.rpm SHA-256: 99af8f2b6173da06c1e02c57803e8b0830ea589ef58a44254e229bd20f102b90 libtiff-devel-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: 7a9a865f093812cbb2af9e5e4605bf549f19d48d3b4d3f9c9b84754a8fe31327 libtiff-tools-debuginfo-4.4.0-15.el9_7.3.i686.rpm SHA-256: 3c5efbb714fb2cce5597216cbc3ce0c9c091e49d55d0c4db96cff438ccc89b45 libtiff-tools-debuginfo-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: e06af70d8fc7d8c0d6e2fdd10d86842dfd2fda8314c9fe153049bd572c2993b7 Red Hat Enterprise Linux for IBM z Systems 9 SRPM libtiff-4.4.0-15.el9_7.3.src.rpm SHA-256: d0dfe549b4da13591aab3b865ba19ed0b6021a7eb2dbddc752966c86d5e12482 s390x libtiff-4.4.0-15.el9_7.3.s390x.rpm SHA-256: b003cd86fad2fffa7191a6b2bb1d35ee5649fb8c0ef438227393e00e53c8d92d libtiff-debuginfo-4.4.0-15.el9_7.3.s390x.rpm SHA-256: fe7793149a4cafb7a337c3df7d6ee57227edca55bdda1c1a547242526cd6e41d libtiff-debugsource-4.4.0-15.el9_7.3.s390x.rpm SHA-256: 0bc9fa3ebe2a2d37cf36a57f3f082b0a501dcd56d1138129ef39c65ef1ab080a libtiff-devel-4.4.0-15.el9_7.3.s390x.rpm SHA-256: ceb5ae1b862a34ffd7714e7b5d58dc8ce8d0779d4cda99e5c0bac9562d15bd38 libtiff-tools-debuginfo-4.4.0-15.el9_7.3.s390x.rpm SHA-256: a6f2b23049a29229964b999e4d96f8dc3a3ecf4c1125a992366c53c3ef62533b Red Hat Enterprise Linux for Power, little endian 9 SRPM libtiff-4.4.0-15.el9_7.3.src.rpm SHA-256: d0dfe549b4da13591aab3b865ba19ed0b6021a7eb2dbddc752966c86d5e12482 ppc64le libtiff-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: 61f9f335f5426aa649126682a63a5edad138c9844a39495b17280c1e1fd13538 libtiff-debuginfo-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: b9a606c77847ff630a94d26c243bb4223d78fa723103cafd8ab2ee6019c3ade7 libtiff-debugsource-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: 7ba95787f03433e7e2ecd97c4baea758a0b023f3c6cc40481ad56672a3cf391d libtiff-devel-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: ac5cdbb3039adecbe6eeb0cf328f0c671af61e2ba34f907e7d332577a7d483fe libtiff-tools-debuginfo-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: 0285989a3b8644bb36847a9f6ed1e9d7581eada11b1434e5d0a269b889b845be Red Hat Enterprise Linux for ARM 64 9 SRPM libtiff-4.4.0-15.el9_7.3.src.rpm SHA-256: d0dfe549b4da13591aab3b865ba19ed0b6021a7eb2dbddc752966c86d5e12482 aarch64 libtiff-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: 7c9460de7c6a3a474b908e6bbd77b6742b78b1637e491bebe9f2520e65c808e5 libtiff-debuginfo-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: 6f4e0ab56d7647b1fc28daac9c804b34c601b3bd588491695ae2463a09d12d3e libtiff-debugsource-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: 4d836cf72b0adf8ea1ddbe3bc1fe30ebb3007055bcd7b9034146f3a6cfb24fbd libtiff-devel-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: 698e283f4cfbcff73065ff480c9626802ba91e30debcf581745a5b6a491bf413 libtiff-tools-debuginfo-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: 44c66608bdf52e14a00cfb4f925514dd29f924bc68fbe6652d49bd23d98c1e25 Red Hat CodeReady Linux Builder for x86_64 9 SRPM x86_64 libtiff-debuginfo-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: d4c6bbc4352548739e4264c21a9ff18bf1a326f158947c33ed6b372c8076f62e libtiff-debugsource-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: afeea5918fd870bf110cebea5de0c19544d2e68d1e93a76515c32620dd9f1edb libtiff-tools-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: f43c50b122c95700c009170d81e7b8697af7ac2fcd6f5ff51bebb173b7a3fa3d libtiff-tools-debuginfo-4.4.0-15.el9_7.3.x86_64.rpm SHA-256: e06af70d8fc7d8c0d6e2fdd10d86842dfd2fda8314c9fe153049bd572c2993b7 Red Hat CodeReady Linux Builder for Power, little endian 9 SRPM ppc64le libtiff-debuginfo-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: b9a606c77847ff630a94d26c243bb4223d78fa723103cafd8ab2ee6019c3ade7 libtiff-debugsource-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: 7ba95787f03433e7e2ecd97c4baea758a0b023f3c6cc40481ad56672a3cf391d libtiff-tools-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: e132022df20f218d7b2542b0a80120fb9033a2b9481245a2316139938f073e8a libtiff-tools-debuginfo-4.4.0-15.el9_7.3.ppc64le.rpm SHA-256: 0285989a3b8644bb36847a9f6ed1e9d7581eada11b1434e5d0a269b889b845be Red Hat CodeReady Linux Builder for ARM 64 9 SRPM aarch64 libtiff-debuginfo-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: 6f4e0ab56d7647b1fc28daac9c804b34c601b3bd588491695ae2463a09d12d3e libtiff-debugsource-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: 4d836cf72b0adf8ea1ddbe3bc1fe30ebb3007055bcd7b9034146f3a6cfb24fbd libtiff-tools-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: de470dfa05d9d3e0bdd2a8910e90ca07d86617a159cd2cc0e11db0f81ecda7f5 libtiff-tools-debuginfo-4.4.0-15.el9_7.3.aarch64.rpm SHA-256: 44c66608bdf52e14a00cfb4f925514dd29f924bc68fbe6652d49bd23d98c1e25 Red Hat CodeReady Linux Builder for IBM z Systems 9 SRPM s390x libtiff-debuginfo-4.4.0-15.el9_7.3.s390x.rpm SHA-256: fe7793149a4cafb7a337c3df7d6ee57227edca55bdda1c1a547242526cd6e41d libtiff-debugsource-4.4.0-15.el9_7.3.s390x.rpm SHA-256: 0bc9fa3ebe2a2d37cf36a57f3f082b0a501dcd56d1138129ef39c65ef1ab080a libtiff-tools-4.4.0-15.el9_7.3.s390x.rpm SHA-256: 565afe73b791767bafb4d75431158a25aab1d43e0cc9fb0057e9cfb95fccde82 libtiff-tools-debuginfo-4.4.0-15.el9_7.3.s390x.rpm SHA-256: a6f2b23049a29229964b999e4d96f8dc3a3ecf4c1125a992366c53c3ef62533b The Red Hat security contact is secalert@redhat.com . More contact details at https://access.redhat.com/security/team/contact/ .