HCE2-SA-2023-0293 Moderate HCE 2.0 Security Fix(es): libtiff: potential integer overflow in raw2tiff.c (CVE-2023-38288) An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to cause a denial of service via crafted TIFF file. (CVE-2022-40090) libtiff: integer overflow in tiffcp.c (CVE-2023-38289) A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tif_fax3.c, resulting in a denial of service. (CVE-2023-3618) HCE 2.0 libtiff-4.3.0-9.r22.hce2.aarch64.rpm libtiff-devel-4.3.0-9.r22.hce2.aarch64.rpm libtiff-help-4.3.0-9.r22.hce2.noarch.rpm libtiff-static-4.3.0-9.r22.hce2.aarch64.rpm libtiff-tools-4.3.0-9.r22.hce2.aarch64.rpm libtiff-4.3.0-9.r22.hce2.x86_64.rpm libtiff-devel-4.3.0-9.r22.hce2.x86_64.rpm libtiff-static-4.3.0-9.r22.hce2.x86_64.rpm libtiff-tools-4.3.0-9.r22.hce2.x86_64.rpm