- What: Red Hat released a libtiff security update
- Impact: Fixes a signed integer overflow vulnerability
Red Hat Product Errata RHSA-2026:19702 - Security Advisory Issued: 2026-05-20 Updated: 2026-05-20 RHSA-2026:19702 - Security Advisory Overview Updated Packages Synopsis Important: libtiff security update Type/Severity Security Advisory: Important Red Hat Lightspeed patch analysis Identify and remediate systems affected by this advisory. View affected systems Topic An update for libtiff is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. Description The libtiff packages contain a library of functions for manipulating Tagged Image File Format (TIFF) files. Security Fix(es): libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing (CVE-2026-4775) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Solution For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 Affected Products Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 x86_64 Red Hat Enterprise Linux Server - AUS 9.4 x86_64 Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 s390x Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 ppc64le Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 x86_64 Red Hat CodeReady Linux Builder for x86_64 - Extended Update Support 9.4 x86_64 Red Hat CodeReady Linux Builder for Power, little endian - Extended Update Support 9.4 ppc64le Red Hat CodeReady Linux Builder for IBM z Systems - Extended Update Support 9.4 s390x Red Hat CodeReady Linux Builder for ARM 64 - Extended Update Support 9.4 aarch64 Red Hat Enterprise Linux for ARM 64 - 4 years of updates 9.4 aarch64 Red Hat Enterprise Linux for IBM z Systems - 4 years of updates 9.4 s390x Red Hat Enterprise Linux for x86_64 - Extended Life Cycle 9.4 x86_64 Red Hat Enterprise Linux for ARM 64 - Extended Life Cycle 9.4 aarch64 Red Hat Enterprise Linux for Power, little endian - Extended Life Cycle 9.4 ppc64le Red Hat Enterprise Linux for IBM z Systems - Extended Life Cycle 9.4 s390x Fixes BZ - 2450768 - CVE-2026-4775 libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVEs CVE-2026-4775 References https://access.redhat.com/security/updates/classification/#important Note: More recent versions of these packages may be available. Click a package name for more details. Red Hat Enterprise Linux for x86_64 - Extended Update Support 9.4 SRPM libtiff-4.4.0-12.el9_4.5.src.rpm SHA-256: 2afcf8edb604ec4a0525361028e85a9675c4cb68267d10c6b07dbc95e5b70923 x86_64 libtiff-4.4.0-12.el9_4.5.i686.rpm SHA-256: c758cfdfb32f622765e7e907ba6698122879f41cafac8a54d00f6c998a1fa671 libtiff-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: df27f87bc3f8852bd6087f311f2fb04c627ae47d193f619e0f2c34b6a05f7fc3 libtiff-debuginfo-4.4.0-12.el9_4.5.i686.rpm SHA-256: c890aee6f58f81b20fdc462673d6d1e224675e26fc5fa39f976f9dfa50818ab1 libtiff-debuginfo-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 958a5dea3ff9abe718a53a5a87c2477290913318b98d81201346798e43751626 libtiff-debugsource-4.4.0-12.el9_4.5.i686.rpm SHA-256: 615c46463608721d2b1463ff58010ce60ed86972320e4c59a3a32e2263a80aa6 libtiff-debugsource-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 8a21d8bc67fb7224de81fb5bbb2a0dc02f147d556beae1dda953645535a85865 libtiff-devel-4.4.0-12.el9_4.5.i686.rpm SHA-256: e5c5427a7514e30c7885ff2e620e7f38856a78670595adac5eccd3a8f82207f2 libtiff-devel-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 507020fa43a9e82c265b37ab722fb0105291b623851b716d075f8dfbf2d649a5 libtiff-tools-debuginfo-4.4.0-12.el9_4.5.i686.rpm SHA-256: c2cd3529fe1d376262c4c1d07cad73ef9ac5eb5ad14731dc5bd7c53a87669b06 libtiff-tools-debuginfo-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 55081e822c4df01c3f49bbc149a47c65b58641c1c2a1f59e402305826f71848b Red Hat Enterprise Linux Server - AUS 9.4 SRPM libtiff-4.4.0-12.el9_4.5.src.rpm SHA-256: 2afcf8edb604ec4a0525361028e85a9675c4cb68267d10c6b07dbc95e5b70923 x86_64 libtiff-4.4.0-12.el9_4.5.i686.rpm SHA-256: c758cfdfb32f622765e7e907ba6698122879f41cafac8a54d00f6c998a1fa671 libtiff-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: df27f87bc3f8852bd6087f311f2fb04c627ae47d193f619e0f2c34b6a05f7fc3 libtiff-debuginfo-4.4.0-12.el9_4.5.i686.rpm SHA-256: c890aee6f58f81b20fdc462673d6d1e224675e26fc5fa39f976f9dfa50818ab1 libtiff-debuginfo-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 958a5dea3ff9abe718a53a5a87c2477290913318b98d81201346798e43751626 libtiff-debugsource-4.4.0-12.el9_4.5.i686.rpm SHA-256: 615c46463608721d2b1463ff58010ce60ed86972320e4c59a3a32e2263a80aa6 libtiff-debugsource-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 8a21d8bc67fb7224de81fb5bbb2a0dc02f147d556beae1dda953645535a85865 libtiff-devel-4.4.0-12.el9_4.5.i686.rpm SHA-256: e5c5427a7514e30c7885ff2e620e7f38856a78670595adac5eccd3a8f82207f2 libtiff-devel-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 507020fa43a9e82c265b37ab722fb0105291b623851b716d075f8dfbf2d649a5 libtiff-tools-debuginfo-4.4.0-12.el9_4.5.i686.rpm SHA-256: c2cd3529fe1d376262c4c1d07cad73ef9ac5eb5ad14731dc5bd7c53a87669b06 libtiff-tools-debuginfo-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 55081e822c4df01c3f49bbc149a47c65b58641c1c2a1f59e402305826f71848b Red Hat Enterprise Linux for IBM z Systems - Extended Update Support 9.4 SRPM libtiff-4.4.0-12.el9_4.5.src.rpm SHA-256: 2afcf8edb604ec4a0525361028e85a9675c4cb68267d10c6b07dbc95e5b70923 s390x libtiff-4.4.0-12.el9_4.5.s390x.rpm SHA-256: becc9f54ce7d43324aebe01f2266975a363581fd6cfc35cafe1da2ca2ee4dbd4 libtiff-debuginfo-4.4.0-12.el9_4.5.s390x.rpm SHA-256: 955f0d3f57265facf270fc924b790a808e83219a6168ae1f1adbdad31fd9d4a9 libtiff-debugsource-4.4.0-12.el9_4.5.s390x.rpm SHA-256: 1f2f7c61099d1d7b5399abc243aeeca15cad659bd611e85bfa10b1c673eec9f0 libtiff-devel-4.4.0-12.el9_4.5.s390x.rpm SHA-256: 313c09617c4c18fd96ebbe22837684f41e8311e3164a8df1c9404267164d9908 libtiff-tools-debuginfo-4.4.0-12.el9_4.5.s390x.rpm SHA-256: b2ee458f5295c3379bac1d37baaa2c8e6c10cf21154a58c4405289122966db39 Red Hat Enterprise Linux for Power, little endian - Extended Update Support 9.4 SRPM libtiff-4.4.0-12.el9_4.5.src.rpm SHA-256: 2afcf8edb604ec4a0525361028e85a9675c4cb68267d10c6b07dbc95e5b70923 ppc64le libtiff-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: efc925bb628d91a5275eeea1e0674d004db33709960d7a9da79fd17b0325692c libtiff-debuginfo-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: ee781dd78ad7b59524d4e22d2a37b2bd8f6d822cdaf3c5608c20094cd1e60ad1 libtiff-debugsource-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: d4d8caf31099b678af3a3920690023901307606ba5aea7fd1a8e6ca188faf707 libtiff-devel-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: ca843d486d8e32189b55c8878d2877ddad7b71fdfff0b13dd8516947b394652d libtiff-tools-debuginfo-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: 0abe303bc8c62cc6ca2c985de02ad66118ae18a5a928390c1ab6119865c2310e Red Hat Enterprise Linux for ARM 64 - Extended Update Support 9.4 SRPM libtiff-4.4.0-12.el9_4.5.src.rpm SHA-256: 2afcf8edb604ec4a0525361028e85a9675c4cb68267d10c6b07dbc95e5b70923 aarch64 libtiff-4.4.0-12.el9_4.5.aarch64.rpm SHA-256: 97b2987607da9b842995eb3382dc51f0b631aad7204e7e77dc8f942ce9156495 libtiff-debuginfo-4.4.0-12.el9_4.5.aarch64.rpm SHA-256: d275e296aa7fd0050ab2e864deedc1dfc0ef34d3d5da1c942de31679eb4f90e8 libtiff-debugsource-4.4.0-12.el9_4.5.aarch64.rpm SHA-256: b7adff7acc04e59f9103e0c4febefa167204be77a4588dd472909c0379b8fdd2 libtiff-devel-4.4.0-12.el9_4.5.aarch64.rpm SHA-256: ad6c6faf08ef9899fe230f63dbc103981a5258df96c15e2c6de8eb6ba514fa4d libtiff-tools-debuginfo-4.4.0-12.el9_4.5.aarch64.rpm SHA-256: e2f6e4af0776652ed34cb66ab6b036602d267fbb36bf6506a1b7cc4009c81bcf Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 9.4 SRPM libtiff-4.4.0-12.el9_4.5.src.rpm SHA-256: 2afcf8edb604ec4a0525361028e85a9675c4cb68267d10c6b07dbc95e5b70923 ppc64le libtiff-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: efc925bb628d91a5275eeea1e0674d004db33709960d7a9da79fd17b0325692c libtiff-debuginfo-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: ee781dd78ad7b59524d4e22d2a37b2bd8f6d822cdaf3c5608c20094cd1e60ad1 libtiff-debugsource-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: d4d8caf31099b678af3a3920690023901307606ba5aea7fd1a8e6ca188faf707 libtiff-devel-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: ca843d486d8e32189b55c8878d2877ddad7b71fdfff0b13dd8516947b394652d libtiff-tools-debuginfo-4.4.0-12.el9_4.5.ppc64le.rpm SHA-256: 0abe303bc8c62cc6ca2c985de02ad66118ae18a5a928390c1ab6119865c2310e Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 9.4 SRPM libtiff-4.4.0-12.el9_4.5.src.rpm SHA-256: 2afcf8edb604ec4a0525361028e85a9675c4cb68267d10c6b07dbc95e5b70923 x86_64 libtiff-4.4.0-12.el9_4.5.i686.rpm SHA-256: c758cfdfb32f622765e7e907ba6698122879f41cafac8a54d00f6c998a1fa671 libtiff-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: df27f87bc3f8852bd6087f311f2fb04c627ae47d193f619e0f2c34b6a05f7fc3 libtiff-debuginfo-4.4.0-12.el9_4.5.i686.rpm SHA-256: c890aee6f58f81b20fdc462673d6d1e224675e26fc5fa39f976f9dfa50818ab1 libtiff-debuginfo-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 958a5dea3ff9abe718a53a5a87c2477290913318b98d81201346798e43751626 libtiff-debugsource-4.4.0-12.el9_4.5.i686.rpm SHA-256: 615c46463608721d2b1463ff58010ce60ed86972320e4c59a3a32e2263a80aa6 libtiff-debugsource-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 8a21d8bc67fb7224de81fb5bbb2a0dc02f147d556beae1dda953645535a85865 libtiff-devel-4.4.0-12.el9_4.5.i686.rpm SHA-256: e5c5427a7514e30c7885ff2e620e7f38856a78670595adac5eccd3a8f82207f2 libtiff-devel-4.4.0-12.el9_4.5.x86_64.rpm SHA-256: 507020fa43a9e82c265b37ab722fb01