Red Hat Product Errata RHSA-2026:19363 - Security Advisory Issued: 2026-05-19 Updated: 2026-05-19 RHSA-2026:19363 - Security Advisory Overview Updated Packages Synopsis Important: libtiff security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libtiff is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing (CVE-2026-4775) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 9 x86_64 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 x86_64 Red Hat Enterprise Linux for IBM z Systems 9 s390x Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 s390x Red Hat Enterprise Linux for Power, little endian 9 ppc64le Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat Enterprise Linux for ARM 64 9 aarch64 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.8 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.8 x86_64 Red Hat CodeReady Linux Builder for x86_64 9 x86_64 Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le Red Hat CodeReady Linux Builder for ARM 64 9 aarch64 Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.8 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.8 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.8 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.8 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.8 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.8 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.8 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.8 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.8 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.8 s390x Fixes BZ - 2450768 - CVE-2026-4775 libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVEs CVE-2026-4775 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 9 SRPM libtiff-4.4.0-18.el9_8.src.rpm SHA-256: bf7cf68d933c220fcc2945dd9db33e5fb767bad16423f22aa7d71edee3a3b346 x86_64 libtiff-4.4.0-18.el9_8.i686.rpm SHA-256: c758aa946f33ada7ea1870f6d971085930748a70f455864ce159de132f9a9d3e libtiff-4.4.0-18.el9_8.x86_64.rpm SHA-256: 51f843df2e484eea3855bc4fb10bc1ac3f357c3a47831294f526c6f39c7775f0 libtiff-debuginfo-4.4.0-18.el9_8.i686.rpm SHA-256: 30d8aa4300a4477c50dfbae6ae2a692dd0b28d4fecca8727b8115b2c3e05b5eb libtiff-debuginfo-4.4.0-18.el9_8.x86_64.rpm SHA-256: 537be9995267a7fba9c0a020405ab512258d25558a52942ad272f620cb4bb6f1 libtiff-debugsource-4.4.0-18.el9_8.i686.rpm SHA-256: 29f7ccd30c8c8915f5d9b5919ae29aa24fad5d080e2ecf86b57be5de12f7ce77 libtiff-debugsource-4.4.0-18.el9_8.x86_64.rpm SHA-256: 7d4b9bd81de825ca726f2171ddc7735494291008ba95f1b734a4cdfe0d896d91 libtiff-devel-4.4.0-18.el9_8.i686.rpm SHA-256: 8b5583199bdbda4804e3af21b5a3dde89ec9bc6a7a9a353ae02e6ab5d532d95c libtiff-devel-4.4.0-18.el9_8.x86_64.rpm SHA-256: bda961e16a470bd620829729e27b3e23fcf41a55b33f39994d26da6bee1f1afd libtiff-tools-debuginfo-4.4.0-18.el9_8.i686.rpm SHA-256: 9ba7a34634faa5773a258a67cebe64333d406876cf2c95c84d0692401dc73589 libtiff-tools-debuginfo-4.4.0-18.el9_8.x86_64.rpm SHA-256: 467b8f52499543532b763cb3a7137ef18e1920b4ff1e5b856320a3849b08eca9 Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.8 SRPM libtiff-4.4.0-18.el9_8.src.rpm SHA-256: bf7cf68d933c220fcc2945dd9db33e5fb767bad16423f22aa7d71edee3a3b346 x86_64 libtiff-4.4.0-18.el9_8.i686.rpm SHA-256: c758aa946f33ada7ea1870f6d971085930748a70f455864ce159de132f9a9d3e libtiff-4.4.0-18.el9_8.x86_64.rpm SHA-256: 51f843df2e484eea3855bc4fb10bc1ac3f357c3a47831294f526c6f39c7775f0 libtiff-debuginfo-4.4.0-18.el9_8.i686.rpm SHA-256: 30d8aa4300a4477c50dfbae6ae2a692dd0b28d4fecca8727b8115b2c3e05b5eb libtiff-debuginfo-4.4.0-18.el9_8.x86_64.rpm SHA-256: 537be9995267a7fba9c0a020405ab512258d25558a52942ad272f620cb4bb6f1 libtiff-debugsource-4.4.0-18.el9_8.i686.rpm SHA-256: 29f7ccd30c8c8915f5d9b5919ae29aa24fad5d080e2ecf86b57be5de12f7ce77 libtiff-debugsource-4.4.0-18.el9_8.x86_64.rpm SHA-256: 7d4b9bd81de825ca726f2171ddc7735494291008ba95f1b734a4cdfe0d896d91 libtiff-devel-4.4.0-18.el9_8.i686.rpm SHA-256: 8b5583199bdbda4804e3af21b5a3dde89ec9bc6a7a9a353ae02e6ab5d532d95c libtiff-devel-4.4.0-18.el9_8.x86_64.rpm SHA-256: bda961e16a470bd620829729e27b3e23fcf41a55b33f39994d26da6bee1f1afd libtiff-tools-debuginfo-4.4.0-18.el9_8.i686.rpm SHA-256: 9ba7a34634faa5773a258a67cebe64333d406876cf2c95c84d0692401dc73589 libtiff-tools-debuginfo-4.4.0-18.el9_8.x86_64.rpm SHA-256: 467b8f52499543532b763cb3a7137ef18e1920b4ff1e5b856320a3849b08eca9 Red Hat Enterprise Linux for IBM z Systems 9 SRPM libtiff-4.4.0-18.el9_8.src.rpm SHA-256: bf7cf68d933c220fcc2945dd9db33e5fb767bad16423f22aa7d71edee3a3b346 s390x libtiff-4.4.0-18.el9_8.s390x.rpm SHA-256: 64a991e950a1c1a6a96d08a688075ea295c4830b0481722e64f0cb9993bbb5f5 libtiff-debuginfo-4.4.0-18.el9_8.s390x.rpm SHA-256: 0879ea31c419f3b134a4f055a73e9befd6af57386b2fcf66cc74fe9f77644c61 libtiff-debugsource-4.4.0-18.el9_8.s390x.rpm SHA-256: a96c7b56e0b70cc59a4f53c87c74c3d375cfa0136654483fae0b9c12f92961ff libtiff-devel-4.4.0-18.el9_8.s390x.rpm SHA-256: 52e68dab88ae8e028f4fbcba30d098ed6bb48a2f2b5a5837ee09ef9f2e18125d libtiff-tools-debuginfo-4.4.0-18.el9_8.s390x.rpm SHA-256: 0edef00894f4816636717e096d35e9d52aee1c3dd2306aa6dc4c56401c21fa43 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.8 SRPM libtiff-4.4.0-18.el9_8.src.rpm SHA-256: bf7cf68d933c220fcc2945dd9db33e5fb767bad16423f22aa7d71edee3a3b346 s390x libtiff-4.4.0-18.el9_8.s390x.rpm SHA-256: 64a991e950a1c1a6a96d08a688075ea295c4830b0481722e64f0cb9993bbb5f5 libtiff-debuginfo-4.4.0-18.el9_8.s390x.rpm SHA-256: 0879ea31c419f3b134a4f055a73e9befd6af57386b2fcf66cc74fe9f77644c61 libtiff-debugsource-4.4.0-18.el9_8.s390x.rpm SHA-256: a96c7b56e0b70cc59a4f53c87c74c3d375cfa0136654483fae0b9c12f92961ff libtiff-devel-4.4.0-18.el9_8.s390x.rpm SHA-256: 52e68dab88ae8e028f4fbcba30d098ed6bb48a2f2b5a5837ee09ef9f2e18125d libtiff-tools-debuginfo-4.4.0-18.el9_8.s390x.rpm SHA-256: 0edef00894f4816636717e096d35e9d52aee1c3dd2306aa6dc4c56401c21fa43 Red Hat Enterprise Linux for Power, little endian 9 SRPM libtiff-4.4.0-18.el9_8.src.rpm SHA-256: bf7cf68d933c220fcc2945dd9db33e5fb767bad16423f22aa7d71edee3a3b346 ppc64le libtiff-4.4.0-18.el9_8.ppc64le.rpm SHA-256: 738a9f6c53836aa45e976104365d3f1647b78025a69efcf4121bcc1cafbdb0c4 libtiff-debuginfo-4.4.0-18.el9_8.ppc64le.rpm SHA-256: c6643f37c54c8607ca0b2336b463aa495e64a23371479627103743ebe9f10caf libtiff-debugsource-4.4.0-18.el9_8.ppc64le.rpm SHA-256: 2c783939544c8788249789d3be5be71ea10ab0759b19cbc743895a0e826ef163 libtiff-devel-4.4.0-18.el9_8.ppc64le.rpm SHA-256: 582c635d5f816753d8b216782bebf05dd1386e51275ebb871dc75fd81139bf06 libtiff-tools-debuginfo-4.4.0-18.el9_8.ppc64le.rpm SHA-256: 40b03e0db06886389a3094684a5e6b4ba5cea8ba2e5a8888a1541d2f667482cd Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.8 SRPM libtiff-4.4.0-18.el9_8.src.rpm SHA-256: bf7cf68d933c220fcc2945dd9db33e5fb767bad16423f22aa7d71edee3a3b346 ppc64le libtiff-4.4.0-18.el9_8.ppc64le.rpm SHA-256: 738a9f6c53836aa45e976104365d3f1647b78025a69efcf4121bcc1cafbdb0c4 libtiff-debuginfo-4.4.0-18.el9_8.ppc64le.rpm SHA-256: c6643f37c54c8607ca0b2336b463aa495e64a23371479627103743ebe9f10caf libtiff-debugsource-4.4.0-18.el9_8.ppc64le.rpm SHA-256: 2c783939544c8788249789d3be5be71ea10ab0759b19cbc743895a0e826ef163 libtiff-devel-4.4.0-18.el9_8.ppc64le.rpm SHA-256: 582c635d5f816753d8b216782bebf05dd1386e51275ebb871dc75fd81139bf06 libtiff-tools-debuginfo-4.4.0-18.el9_8.ppc64le.rpm SHA-256: 40b03e0db06886389a3094684a5e6b4ba5cea8ba2e5a8888a1541d2f667482cd Red Hat Enterprise Linux for ARM 64 9 SRPM libtiff-4.4.0-18.el9_8.src.rpm SHA-256: bf7cf68d933c220fcc2945dd9db33e5fb767bad16423f22aa7d71edee3a3b346 aarch64 libtiff-4.4.0-18.el9_8.aarch64.rpm SHA-256: e29d016684c332be69b0979adab11695859652f20acc3815d6feb9d6eb009c28 libtiff-debuginfo-4.4.0-18.el9_8.aarch64.rpm SHA-256: 40eaac9aaec7cef84dcb22a6bda7272a6b164d4bfbf41118ab6a0a19290d1613 libtiff-debugsource-4.4.0-18.el9_8.aarch64.rpm SHA-256: 4f65612f62ee33d2d0260996ddab2e47be375eeffc1587f53c91e91274ee2096 libtiff-devel-4.4.0-18.el9_8.aarch64.rpm SHA-256: e41fcedc182c9cb73b624dcdafa8b76824bf5bd68a7fb922f094b3a7675bb767 libtiff-tools-debuginfo-4.4.0-18.el9_8.aarch64.rpm SHA-256: 4876a9311d7b190ec15858b680e1012b3a1b3fa9751a4916ac104d3e12f46554 Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.8 SRPM libtiff-4.4.0-18.el9_8.src.rpm SHA-256: bf7cf68d933c220fcc2945dd9db33e5fb767ba