diff options
| author | Armin Kuster <akuster808@gmail.com> | 2016-12-10 09:38:43 -0800 |
|---|---|---|
| committer | Richard Purdie <richard.purdie@linuxfoundation.org> | 2016-12-13 22:55:21 +0000 |
| commit | a63b53841b2d7d0c360d3c6813a19317216f85d0 (patch) | |
| tree | 570c0c5d47a4643e0361594855153b53157381af /meta/recipes-multimedia/libtiff/files/CVE-2016-3623.patch | |
| parent | 840ea755f2a2b39719e4af6bea0160cd2008cfe9 (diff) | |
| download | poky-a63b53841b2d7d0c360d3c6813a19317216f85d0.tar.gz | |
libtiff: Update to 4.0.7
Major changes:
The libtiff tools bmp2tiff, gif2tiff, ras2tiff, sgi2tiff, sgisv, and ycbcr are completely removed from the distribution, used for demos.
CVEs fixed:
CVE-2016-9297
CVE-2016-9448
CVE-2016-9273
CVE-2014-8127
CVE-2016-3658
CVE-2016-5875
CVE-2016-5652
CVE-2016-3632
plus more that are not identified in the changelog.
removed patches integrated into update.
more info: http://libtiff.maptools.org/v4.0.7.html
(From OE-Core rev: 9945cbccc4c737c84ad441773061acbf90c7baed)
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Diffstat (limited to 'meta/recipes-multimedia/libtiff/files/CVE-2016-3623.patch')
| -rw-r--r-- | meta/recipes-multimedia/libtiff/files/CVE-2016-3623.patch | 52 |
1 files changed, 0 insertions, 52 deletions
diff --git a/meta/recipes-multimedia/libtiff/files/CVE-2016-3623.patch b/meta/recipes-multimedia/libtiff/files/CVE-2016-3623.patch deleted file mode 100644 index f554ac5464..0000000000 --- a/meta/recipes-multimedia/libtiff/files/CVE-2016-3623.patch +++ /dev/null | |||
| @@ -1,52 +0,0 @@ | |||
| 1 | From bd024f07019f5d9fea236675607a69f74a66bc7b Mon Sep 17 00:00:00 2001 | ||
| 2 | From: erouault <erouault> | ||
| 3 | Date: Mon, 15 Aug 2016 21:26:56 +0000 | ||
| 4 | Subject: [PATCH] * tools/rgb2ycbcr.c: validate values of -v and -h parameters | ||
| 5 | to avoid potential divide by zero. Fixes CVE-2016-3623 (bugzilla #2569) | ||
| 6 | |||
| 7 | CVE: CVE-2016-3623 | ||
| 8 | Upstream-Status: Backport | ||
| 9 | https://github.com/vadz/libtiff/commit/bd024f07019f5d9fea236675607a69f74a66bc7b | ||
| 10 | |||
| 11 | Signed-off-by: Yi Zhao <yi.zhao@windirver.com> | ||
| 12 | --- | ||
| 13 | ChangeLog | 5 +++++ | ||
| 14 | tools/rgb2ycbcr.c | 4 ++++ | ||
| 15 | 2 files changed, 9 insertions(+) | ||
| 16 | |||
| 17 | diff --git a/ChangeLog b/ChangeLog | ||
| 18 | index 5d60608..3e6642a 100644 | ||
| 19 | --- a/ChangeLog | ||
| 20 | +++ b/ChangeLog | ||
| 21 | @@ -1,5 +1,10 @@ | ||
| 22 | 2016-08-15 Even Rouault <even.rouault at spatialys.com> | ||
| 23 | |||
| 24 | + * tools/rgb2ycbcr.c: validate values of -v and -h parameters to | ||
| 25 | + avoid potential divide by zero. Fixes CVE-2016-3623 (bugzilla #2569) | ||
| 26 | + | ||
| 27 | +2016-08-15 Even Rouault <even.rouault at spatialys.com> | ||
| 28 | + | ||
| 29 | * tools/tiffcrop.c: Fix out-of-bounds write in loadImage(). | ||
| 30 | From patch libtiff-CVE-2016-3991.patch from | ||
| 31 | libtiff-4.0.3-25.el7_2.src.rpm by Nikola Forro (bugzilla #2543) | ||
| 32 | diff --git a/tools/rgb2ycbcr.c b/tools/rgb2ycbcr.c | ||
| 33 | index 3829d6b..51f4259 100644 | ||
| 34 | --- a/tools/rgb2ycbcr.c | ||
| 35 | +++ b/tools/rgb2ycbcr.c | ||
| 36 | @@ -95,9 +95,13 @@ main(int argc, char* argv[]) | ||
| 37 | break; | ||
| 38 | case 'h': | ||
| 39 | horizSubSampling = atoi(optarg); | ||
| 40 | + if( horizSubSampling != 1 && horizSubSampling != 2 && horizSubSampling != 4 ) | ||
| 41 | + usage(-1); | ||
| 42 | break; | ||
| 43 | case 'v': | ||
| 44 | vertSubSampling = atoi(optarg); | ||
| 45 | + if( vertSubSampling != 1 && vertSubSampling != 2 && vertSubSampling != 4 ) | ||
| 46 | + usage(-1); | ||
| 47 | break; | ||
| 48 | case 'r': | ||
| 49 | rowsperstrip = atoi(optarg); | ||
| 50 | -- | ||
| 51 | 2.7.4 | ||
| 52 | |||