libtiff: fix CVE-2013-1961

Integrate community fix for the issue CVE-2013-1961 and migrated to version 4.0.3. Stack-based buffer overflow in the t2p_write_pdf_page function in tiff2pdf in libtiff before 4.0.3 allows remote attackers to cause a denial of service (application crash) via a crafted image length and resolution in a TIFF image file. (From OE-Core rev: f24e3456c60951d2985d7c23bdcc1f8c15d6c167) Signed-off-by: Priyanka Shobhan <priyanka_shobhan@mentor.com> Signed-off-by: Christopher Larson <chris_larson@mentor.com> Signed-off-by: Muzaffar Mahmood <muzaffar_mahmood@mentor.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
author: Muzaffar Mahmood <muzaffar_mahmood@mentor.com> 2014-08-25 16:51:06 +0500
committer: Richard Purdie <richard.purdie@linuxfoundation.org> 2014-08-27 12:12:32 +0100
commit: 07ad83ed024a7aa1dff4b6d9b8830c0144b83ea3 (patch)
tree: f52b446c41901c3f0db0f91d46ad2e556dc295ed /meta/recipes-multimedia/libtiff/tiff_4.0.3.bb
parent: 40771f3ba70e25d3222378b660b2c01b60a7a1bf (diff)
download: poky-07ad83ed024a7aa1dff4b6d9b8830c0144b83ea3.tar.gz
1 files changed, 1 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/libtiff/tiff_4.0.3.bb b/meta/recipes-multimedia/libtiff/tiff_4.0.3.bb
index af1f2b6ad8..b7d1129ad6 100644
--- a/meta/recipes-multimedia/libtiff/tiff_4.0.3.bb
+++ b/meta/recipes-multimedia/libtiff/tiff_4.0.3.bb
@@ -6,6 +6,7 @@ HOMEPAGE = "http://www.remotesensing.org/libtiff/"
 SRC_URI = "ftp://ftp.remotesensing.org/pub/libtiff/tiff-${PV}.tar.gz \
           file://libtool2.patch \
           file://libtiff-CVE-2013-1960.patch \
+           file://libtiff-CVE-2013-1961.patch \
           file://libtiff-CVE-2013-4232.patch \
           file://libtiff-CVE-2013-4243.patch \
           file://libtiff-CVE-2013-4244.patch \
author	Muzaffar Mahmood <muzaffar_mahmood@mentor.com>	2014-08-25 16:51:06 +0500
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-08-27 12:12:32 +0100
commit	07ad83ed024a7aa1dff4b6d9b8830c0144b83ea3 (patch)
tree	f52b446c41901c3f0db0f91d46ad2e556dc295ed /meta/recipes-multimedia/libtiff/tiff_4.0.3.bb
parent	40771f3ba70e25d3222378b660b2c01b60a7a1bf (diff)
download	poky-07ad83ed024a7aa1dff4b6d9b8830c0144b83ea3.tar.gz

diff --git a/meta/recipes-multimedia/libtiff/tiff_4.0.3.bb b/meta/recipes-multimedia/libtiff/tiff_4.0.3.bb index af1f2b6ad8..b7d1129ad6 100644 --- a/meta/recipes-multimedia/libtiff/tiff_4.0.3.bb +++ b/meta/recipes-multimedia/libtiff/tiff_4.0.3.bb
@@ -6,6 +6,7 @@ HOMEPAGE = "http://www.remotesensing.org/libtiff/"
6	SRC_URI = "ftp://ftp.remotesensing.org/pub/libtiff/tiff-${PV}.tar.gz \	6	SRC_URI = "ftp://ftp.remotesensing.org/pub/libtiff/tiff-${PV}.tar.gz \
7	file://libtool2.patch \	7	file://libtool2.patch \
8	file://libtiff-CVE-2013-1960.patch \	8	file://libtiff-CVE-2013-1960.patch \
		9	file://libtiff-CVE-2013-1961.patch \
9	file://libtiff-CVE-2013-4232.patch \	10	file://libtiff-CVE-2013-4232.patch \
10	file://libtiff-CVE-2013-4243.patch \	11	file://libtiff-CVE-2013-4243.patch \
11	file://libtiff-CVE-2013-4244.patch \	12	file://libtiff-CVE-2013-4244.patch \