tiff: fix CVE-2019-14973

CVE reference: https://nvd.nist.gov/vuln/detail/CVE-2019-14973 Upstream merge: https://gitlab.com/libtiff/libtiff/commit/2218055c (From OE-Core rev: b57304c1afb73a698a1c40a017d433e4d81a8df2) Signed-off-by: Trevor Gamblin <trevor.gamblin@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Trevor Gamblin <trevor.gamblin@windriver.com> 2019-09-20 14:25:11 -0400
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2019-10-02 10:09:47 +0100
commit: c855f55a7dc1a3d44114aca9f13cec7bae83f03f (patch)
tree: c6c085bb45392b23e698a75bfa4e0a9ab9aff2a9 /meta/recipes-multimedia/libtiff/tiff_4.0.10.bb
parent: 2657837f72f06966ed681c6e91e781134e990f75 (diff)
download: poky-c855f55a7dc1a3d44114aca9f13cec7bae83f03f.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/meta/recipes-multimedia/libtiff/tiff_4.0.10.bb b/meta/recipes-multimedia/libtiff/tiff_4.0.10.bb
index 999496273c..0432763cce 100644
--- a/meta/recipes-multimedia/libtiff/tiff_4.0.10.bb
+++ b/meta/recipes-multimedia/libtiff/tiff_4.0.10.bb
@@ -6,7 +6,9 @@ CVE_PRODUCT = "libtiff"
 SRC_URI = "http://download.osgeo.org/libtiff/tiff-${PV}.tar.gz \
           file://CVE-2019-6128.patch \
-           file://CVE-2019-7663.patch"
+           file://CVE-2019-7663.patch \
+           file://CVE-2019-14973.patch \
+"
 SRC_URI[md5sum] = "114192d7ebe537912a2b97408832e7fd"
 SRC_URI[sha256sum] = "2c52d11ccaf767457db0c46795d9c7d1a8d8f76f68b0b800a3dfe45786b996e4"
author	Trevor Gamblin <trevor.gamblin@windriver.com>	2019-09-20 14:25:11 -0400
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2019-10-02 10:09:47 +0100
commit	c855f55a7dc1a3d44114aca9f13cec7bae83f03f (patch)
tree	c6c085bb45392b23e698a75bfa4e0a9ab9aff2a9 /meta/recipes-multimedia/libtiff/tiff_4.0.10.bb
parent	2657837f72f06966ed681c6e91e781134e990f75 (diff)
download	poky-c855f55a7dc1a3d44114aca9f13cec7bae83f03f.tar.gz

diff --git a/meta/recipes-multimedia/libtiff/tiff_4.0.10.bb b/meta/recipes-multimedia/libtiff/tiff_4.0.10.bb index 999496273c..0432763cce 100644 --- a/meta/recipes-multimedia/libtiff/tiff_4.0.10.bb +++ b/meta/recipes-multimedia/libtiff/tiff_4.0.10.bb
@@ -6,7 +6,9 @@ CVE_PRODUCT = "libtiff"
6		6
7	SRC_URI = "http://download.osgeo.org/libtiff/tiff-${PV}.tar.gz \	7	SRC_URI = "http://download.osgeo.org/libtiff/tiff-${PV}.tar.gz \
8	file://CVE-2019-6128.patch \	8	file://CVE-2019-6128.patch \
9	file://CVE-2019-7663.patch"	9	file://CVE-2019-7663.patch \
		10	file://CVE-2019-14973.patch \
		11	"
10	SRC_URI[md5sum] = "114192d7ebe537912a2b97408832e7fd"	12	SRC_URI[md5sum] = "114192d7ebe537912a2b97408832e7fd"
11	SRC_URI[sha256sum] = "2c52d11ccaf767457db0c46795d9c7d1a8d8f76f68b0b800a3dfe45786b996e4"	13	SRC_URI[sha256sum] = "2c52d11ccaf767457db0c46795d9c7d1a8d8f76f68b0b800a3dfe45786b996e4"
12		14