1 files changed, 34 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/libtiff/files/CVE-2022-0908.patch b/meta/recipes-multimedia/libtiff/files/CVE-2022-0908.patch
new file mode 100644
index 0000000000..e65af6c600
--- /dev/null
+++ b/meta/recipes-multimedia/libtiff/files/CVE-2022-0908.patch
@@ -0,0 +1,34 @@
+From a95b799f65064e4ba2e2dfc206808f86faf93e85 Mon Sep 17 00:00:00 2001
+From: Even Rouault <even.rouault@spatialys.com>
+Date: Thu, 17 Feb 2022 15:28:43 +0100
+Subject: [PATCH] TIFFFetchNormalTag(): avoid calling memcpy() with a null
+ source pointer and size of zero (fixes #383)
+CVE: CVE-2022-0908
+Upstream-Status: Backport [https://sources.debian.org/src/tiff/4.1.0+git191117-2%7Edeb10u4/debian/patches/CVE-2022-0908.patch/]
+Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com>
+Comment: No change in any hunk
+---
+ libtiff/tif_dirread.c | 5 ++++-
+ 1 file changed, 4 insertions(+), 1 deletion(-)
+diff --git a/libtiff/tif_dirread.c b/libtiff/tif_dirread.c
+index 50ebf8ac..2ec44a4f 100644
+--- a/libtiff/tif_dirread.c
+++ b/libtiff/tif_dirread.c
+@@ -5021,7 +5021,10 @@ TIFFFetchNormalTag(TIFF* tif, TIFFDirEntry* dp, int recover)
+                                                                _TIFFfree(data);
+                                                        return(0);
+                                                }
+-                                               _TIFFmemcpy(o,data,(uint32)dp->tdir_count);
+                                               if (dp->tdir_count > 0 )
+                                               {
+                                                       _TIFFmemcpy(o,data,(uint32)dp->tdir_count);
+                                               }
+                                                o[(uint32)dp->tdir_count]=0;
+                                                if (data!=0)
+                                                        _TIFFfree(data);
+-- 
+GitLab

diff --git a/meta/recipes-multimedia/libtiff/files/CVE-2022-0908.patch b/meta/recipes-multimedia/libtiff/files/CVE-2022-0908.patch new file mode 100644 index 0000000000..e65af6c600 --- /dev/null +++ b/meta/recipes-multimedia/libtiff/files/CVE-2022-0908.patch
@@ -0,0 +1,34 @@
	1	From a95b799f65064e4ba2e2dfc206808f86faf93e85 Mon Sep 17 00:00:00 2001
	2	From: Even Rouault <even.rouault@spatialys.com>
	3	Date: Thu, 17 Feb 2022 15:28:43 +0100
	4	Subject: [PATCH] TIFFFetchNormalTag(): avoid calling memcpy() with a null
	5	source pointer and size of zero (fixes #383)
	6
	7	CVE: CVE-2022-0908
	8	Upstream-Status: Backport [https://sources.debian.org/src/tiff/4.1.0+git191117-2%7Edeb10u4/debian/patches/CVE-2022-0908.patch/]
	9	Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com>
	10	Comment: No change in any hunk
	11
	12	---
	13	libtiff/tif_dirread.c \| 5 ++++-
	14	1 file changed, 4 insertions(+), 1 deletion(-)
	15
	16	diff --git a/libtiff/tif_dirread.c b/libtiff/tif_dirread.c
	17	index 50ebf8ac..2ec44a4f 100644
	18	--- a/libtiff/tif_dirread.c
	19	+++ b/libtiff/tif_dirread.c
	20	@@ -5021,7 +5021,10 @@ TIFFFetchNormalTag(TIFF* tif, TIFFDirEntry* dp, int recover)
	21	_TIFFfree(data);
	22	return(0);
	23	}
	24	- _TIFFmemcpy(o,data,(uint32)dp->tdir_count);
	25	+ if (dp->tdir_count > 0 )
	26	+ {
	27	+ _TIFFmemcpy(o,data,(uint32)dp->tdir_count);
	28	+ }
	29	o[(uint32)dp->tdir_count]=0;
	30	if (data!=0)
	31	_TIFFfree(data);
	32	--
	33	GitLab
	34