diff --git a/libtiff/PKGBUILD b/libtiff/PKGBUILD
index f64a35acce..43da37de4c 100644
--- a/libtiff/PKGBUILD
+++ b/libtiff/PKGBUILD
@@ -4,7 +4,7 @@
 
 pkgname=libtiff
 pkgver=4.6.0
-pkgrel=1
+pkgrel=2
 pkgdesc='Library for manipulation of TIFF images'
 url='http://www.simplesystems.org/libtiff/'
 arch=(x86_64 powerpc64le powerpc64 powerpc riscv64)
@@ -13,11 +13,15 @@ depends=('gcc-libs' 'glibc' 'jbigkit' 'libjpeg-turbo' 'libjpeg.so' 'zlib' 'xz' '
 makedepends=('freeglut' 'glu' 'mesa')
 optdepends=('freeglut: for using tiffgt')
 provides=('libtiff.so' 'libtiffxx.so')
-source=("https://download.osgeo.org/libtiff/tiff-${pkgver}.tar.gz"{,.sig})
+source=("https://download.osgeo.org/libtiff/tiff-${pkgver}.tar.gz"{,.sig}
+        # CVE-2023-6277
+        "https://gitlab.com/libtiff/libtiff/-/commit/5320c9d89c054fa805d037d84c57da874470b01a.patch")
 sha256sums=('88b3979e6d5c7e32b50d7ec72fb15af724f6ab2cbf7e10880c360a77e4b5d99a'
-            'SKIP')
+            'SKIP'
+            '7988575f4caa27e406aee172354ec5c9ff7271813988a753c2643a9ca0825ca8')
 b2sums=('aa3d51ffb7d800424a05e6a12e2eaad41adfe7d676650d2857bcc073a25627be88372410a27126e9c067692060c26bd2dec80a42a2188197f6f3ff9d8507fc8f'
-        'SKIP')
+        'SKIP'
+        'f0ecae3d1b75133823aa9361caeb3123ddda72d21748552daf2bcf9c771ace743b888956d6320593e85f9b2f0fc558f21bceabf81312ed5f5845859e3f7c9199')
 validpgpkeys=(
   'EBDFDB21B020EE8FD151A88DE301047DE1198975' # Bob Friesenhahn <bfriesen@simple.dallas.tx.us>
   'B1FA7D81EEB8E66399178B9733EBBFC47B3DD87D' # Even Rouault <even.rouault@spatialys.com>