Fedora Linux has rolled out important security updates for two key packages: libtiff and pandoc, both part of the Fedora 42 release.
Release Date: August 15, 2025
Key Features:
- LibTIFF is a library utilized for manipulating TIFF (Tagged Image File Format) image files, which are commonly used for high-quality images.
Security Fixes:
- The latest update addresses two critical vulnerabilities:
- CVE-2025-8534: A null pointer dereference issue in tiff2ps.
- CVE-2024-13978: A null pointer dereference issue in tiff2pdf.
Release Date: August 15, 2025
Key Features:
- Pandoc is a versatile Haskell library for converting between various markup formats, including Markdown, HTML, TeX, and many others. It supports a wide array of formats, making it a powerful tool for document conversion and management.
Update Information:
- The update enhances the manual documentation to address security concerns related to user HTML iframes, specifically regarding Server-Side Request Forgery vulnerabilities (CVE-2025-51591).
- For libtiff: `su -c 'dnf upgrade --advisory FEDORA-2025-a78662be2c'`
- For pandoc: `su -c 'dnf upgrade --advisory FEDORA-2025-07fdd73bf0'`
In addition to these updates, Fedora continues to monitor and address vulnerabilities, ensuring that users have access to the most secure and efficient software tools available. Regular updates are essential not only for security but also for performance improvements and new features that enhance user experience
LibTIFF Update
Version: 4.7.0-7.fc42Release Date: August 15, 2025
Key Features:
- LibTIFF is a library utilized for manipulating TIFF (Tagged Image File Format) image files, which are commonly used for high-quality images.
Security Fixes:
- The latest update addresses two critical vulnerabilities:
- CVE-2025-8534: A null pointer dereference issue in tiff2ps.
- CVE-2024-13978: A null pointer dereference issue in tiff2pdf.
Pandoc Update
Version: 3.1.11.1-33.fc42Release Date: August 15, 2025
Key Features:
- Pandoc is a versatile Haskell library for converting between various markup formats, including Markdown, HTML, TeX, and many others. It supports a wide array of formats, making it a powerful tool for document conversion and management.
Update Information:
- The update enhances the manual documentation to address security concerns related to user HTML iframes, specifically regarding Server-Side Request Forgery vulnerabilities (CVE-2025-51591).
Installation
Users can install these updates using the DNF package manager with the following commands:- For libtiff: `su -c 'dnf upgrade --advisory FEDORA-2025-a78662be2c'`
- For pandoc: `su -c 'dnf upgrade --advisory FEDORA-2025-07fdd73bf0'`
Conclusion
These updates reflect Fedora's commitment to maintaining security and functionality in its software packages. Users are encouraged to update their systems regularly to benefit from the latest enhancements and security patches.In addition to these updates, Fedora continues to monitor and address vulnerabilities, ensuring that users have access to the most secure and efficient software tools available. Regular updates are essential not only for security but also for performance improvements and new features that enhance user experience
LibTIFF and Pandoc updates for Fedora
Fedora Linux has received security updates, including libtiff and pandoc:
Fedora 42 Update: libtiff-4.7.0-7.fc42
Fedora 42 Update: pandoc-3.1.11.1-33.fc42
