NIXPKGS-2025-0002
published on 30 Oct 2025
Permalink
CVE-2025-9900
8.8 HIGH
- CVSS version: 3.1
- Attack vector (AV): NETWORK
- Attack complexity (AC): LOW
- Privileges required (PR): NONE
- User interaction (UI): REQUIRED
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): HIGH
by @balsoft Activity log
- Created automatic suggestion
- @balsoft accepted
-
@balsoft
removed
3 maintainers
- @sikmir
- @imincik
- @nialov
- @balsoft added maintainer @balsoft
- @balsoft published on GitHub
Libtiff: libtiff write-what-where
A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file's metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user.
References
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23078 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23079 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23080 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23078 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23079 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23080 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23078 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23079 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23080 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23078 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23079 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23080 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0001 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0078 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23078 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23079 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23080 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0001 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0076 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0077 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0078 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23078 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23079 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23080 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0001 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0076 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0077 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0078 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
- RHSA-2025:17651 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17675 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17710 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17738 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17739 vendor-advisory x_refsource_REDHAT
- RHSA-2025:17740 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19113 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19156 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19276 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19906 vendor-advisory x_refsource_REDHAT
- RHSA-2025:19947 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20956 vendor-advisory x_refsource_REDHAT
- RHSA-2025:20998 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21060 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21061 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21062 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21407 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21506 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21507 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21508 vendor-advisory x_refsource_REDHAT
- RHSA-2025:21994 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23078 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23079 vendor-advisory x_refsource_REDHAT
- RHSA-2025:23080 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0001 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0076 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0077 vendor-advisory x_refsource_REDHAT
- RHSA-2026:0078 vendor-advisory x_refsource_REDHAT
- https://access.redhat.com/security/cve/CVE-2025-9900 x_refsource_REDHAT vdb-entry
- RHBZ#2392784 issue-tracking x_refsource_REDHAT
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read…
- https://gitlab.com/libtiff/libtiff/-/issues/704
- https://gitlab.com/libtiff/libtiff/-/merge_requests/732
- https://libtiff.gitlab.io/libtiff/releases/v4.7.1.html
- https://github.com/SexyShoelessGodofWar/LibTiff-4.7.0-Write-What-Where?tab=read… exploit
- https://lists.debian.org/debian-lts-announce/2025/09/msg00031.html
- http://www.openwall.com/lists/oss-security/2025/09/26/3
Affected products
libtiff
- <4.7.1
- *
mingw-libtiff
- *
compat-libtiff3
- *
spice-client-win
- *
rhaiis/vllm-cuda-rhel9
- *
rhaiis/vllm-rocm-rhel9
- *
rhaiis/model-opt-cuda-rhel9
- *
discovery/discovery-ui-rhel9
- *
Package maintainers
-
@nh2 Niklas Hambüchen <mail@nh2.me>
-
@autra Augustin Trancart <augustin.trancart@gmail.com>
-
@willcohen Will Cohen
-
@l0b0 Victor Engmark <victor@engmark.name>
Ignored maintainers (3)
-
@sikmir Nikolay Korotkiy <sikmir@disroot.org>
-
@nialov Nikolas Ovaskainen <nikolasovaskainen@gmail.com>
-
@imincik Ivan Mincik <ivan.mincik@gmail.com>
Additional maintainers
-
@balsoft Alexander Bantyev <balsoft75@gmail.com>