SUSE has issued an advisory today (May 16): https://lists.suse.com/pipermail/sle-security-updates/2022-May/011027.html Mageia 8 is also affected.
CC: (none) => nicolas.salgueroWhiteboard: (none) => MGA8TOO
Hi, According to openSUSE and Debian, the commit that fixes CVE-2022-1056 is https://gitlab.com/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c. The patch from that commit was already added to fix the CVEs from bug 30210. Best regards, Nico.
Thanks. *** This bug has been marked as a duplicate of bug 30210 ***
Resolution: (none) => DUPLICATEStatus: NEW => RESOLVED