SUSE has issued an advisory today (May 16):
Mageia 8 is also affected.
According to openSUSE and Debian, the commit that fixes CVE-2022-1056 is https://gitlab.com/libtiff/libtiff/-/commit/232282fd8f9c21eefe8d2d2b96cdbbb172fe7b7c.
The patch from that commit was already added to fix the CVEs from bug 30210.
*** This bug has been marked as a duplicate of bug 30210 ***