An update for libtiff is now available for HCE 3.0

HCE3-SA-2025-0216 An update for libtiff is now available for HCE 3.0 Important HCE 3.0 Security Fix(es): A flaw was found in Libtiff. This vulnerability is a "write-what-where" condition, triggered when the library processes a specially crafted TIFF image file. By providing an abnormally large image height value in the file_x27;s metadata, an attacker can trick the library into writing attacker-controlled color data to an arbitrary memory location. This memory corruption can be exploited to cause a denial of service (application crash) or to achieve arbitrary code execution with the permissions of the user. (CVE-2025-9900) HCE 3.0 libtiff-4.6.0-3.r5.hce3.x86_64.rpm libtiff-devel-4.6.0-3.r5.hce3.x86_64.rpm libtiff-help-4.6.0-3.r5.hce3.noarch.rpm libtiff-static-4.6.0-3.r5.hce3.x86_64.rpm libtiff-tools-4.6.0-3.r5.hce3.x86_64.rpm libtiff-4.6.0-3.r5.hce3.aarch64.rpm libtiff-devel-4.6.0-3.r5.hce3.aarch64.rpm libtiff-static-4.6.0-3.r5.hce3.aarch64.rpm libtiff-tools-4.6.0-3.r5.hce3.aarch64.rpm