Amazon Linux 2023 Security Advisory: ALAS-2023-376
Advisory Release Date: 2023-09-27 21:07 Pacific
Advisory Updated Date: 2023-10-03 20:50 Pacific
Severity:
Medium
Issue Overview:
A vulnerability classified as problematic was found in LibTIFF 4.3.0. Affected by this vulnerability is the TIFF File Handler of tiff2ps. Opening a malicious file leads to a denial of service. The attack can be launched remotely but requires user interaction. The exploit has been disclosed to the public and may be used. (CVE-2022-1210)
Affected Packages:
jbigkit
Issue Correction:
Run dnf update jbigkit --releasever 2023.2.20231002 to update your system.
New Packages:
aarch64:
jbigkit-libs-debuginfo-2.1-21.amzn2023.0.2.aarch64
jbigkit-devel-2.1-21.amzn2023.0.2.aarch64
jbigkit-debuginfo-2.1-21.amzn2023.0.2.aarch64
jbigkit-debugsource-2.1-21.amzn2023.0.2.aarch64
jbigkit-libs-2.1-21.amzn2023.0.2.aarch64
jbigkit-2.1-21.amzn2023.0.2.aarch64
src:
jbigkit-2.1-21.amzn2023.0.2.src
x86_64:
jbigkit-debugsource-2.1-21.amzn2023.0.2.x86_64
jbigkit-debuginfo-2.1-21.amzn2023.0.2.x86_64
jbigkit-libs-debuginfo-2.1-21.amzn2023.0.2.x86_64
jbigkit-devel-2.1-21.amzn2023.0.2.x86_64
jbigkit-libs-2.1-21.amzn2023.0.2.x86_64
jbigkit-2.1-21.amzn2023.0.2.x86_64