1 files changed, 37 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/libtiff/files/CVE-2022-0909.patch b/meta/recipes-multimedia/libtiff/files/CVE-2022-0909.patch
new file mode 100644
index 0000000000..d487f1bd95
--- /dev/null
+++ b/meta/recipes-multimedia/libtiff/files/CVE-2022-0909.patch
@@ -0,0 +1,37 @@
+From 32ea0722ee68f503b7a3f9b2d557acb293fc8cde Mon Sep 17 00:00:00 2001
+From: 4ugustus <wangdw.augustus@qq.com>
+Date: Tue, 8 Mar 2022 16:22:04 +0000
+Subject: [PATCH] fix the FPE in tiffcrop (#393)
+CVE: CVE-2022-0909
+Upstream-Status: Backport [https://sources.debian.org/src/tiff/4.1.0+git191117-2%7Edeb10u4/debian/patches/CVE-2022-0909.patch/]
+Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com>
+Comment: No change in any hunk
+---
+ libtiff/tif_dir.c | 4 ++--
+ 1 file changed, 2 insertions(+), 2 deletions(-)
+diff --git a/libtiff/tif_dir.c b/libtiff/tif_dir.c
+index 57055ca9..59b346ca 100644
+--- a/libtiff/tif_dir.c
+++ b/libtiff/tif_dir.c
+@@ -334,13 +334,13 @@ _TIFFVSetField(TIFF* tif, uint32_t tag, va_list ap)
+                break;
+        case TIFFTAG_XRESOLUTION:
+         dblval = va_arg(ap, double);
+-        if( dblval < 0 )
+        if( dblval != dblval || dblval < 0 )
+             goto badvaluedouble;
+                td->td_xresolution = _TIFFClampDoubleToFloat( dblval );
+                break;
+        case TIFFTAG_YRESOLUTION:
+         dblval = va_arg(ap, double);
+-        if( dblval < 0 )
+        if( dblval != dblval || dblval < 0 )
+             goto badvaluedouble;
+                td->td_yresolution = _TIFFClampDoubleToFloat( dblval );
+                break;
+-- 
+GitLab

diff --git a/meta/recipes-multimedia/libtiff/files/CVE-2022-0909.patch b/meta/recipes-multimedia/libtiff/files/CVE-2022-0909.patch new file mode 100644 index 0000000000..d487f1bd95 --- /dev/null +++ b/meta/recipes-multimedia/libtiff/files/CVE-2022-0909.patch
@@ -0,0 +1,37 @@
	1	From 32ea0722ee68f503b7a3f9b2d557acb293fc8cde Mon Sep 17 00:00:00 2001
	2	From: 4ugustus <wangdw.augustus@qq.com>
	3	Date: Tue, 8 Mar 2022 16:22:04 +0000
	4	Subject: [PATCH] fix the FPE in tiffcrop (#393)
	5
	6	CVE: CVE-2022-0909
	7	Upstream-Status: Backport [https://sources.debian.org/src/tiff/4.1.0+git191117-2%7Edeb10u4/debian/patches/CVE-2022-0909.patch/]
	8	Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com>
	9	Comment: No change in any hunk
	10
	11	---
	12	libtiff/tif_dir.c \| 4 ++--
	13	1 file changed, 2 insertions(+), 2 deletions(-)
	14
	15	diff --git a/libtiff/tif_dir.c b/libtiff/tif_dir.c
	16	index 57055ca9..59b346ca 100644
	17	--- a/libtiff/tif_dir.c
	18	+++ b/libtiff/tif_dir.c
	19	@@ -334,13 +334,13 @@ _TIFFVSetField(TIFF* tif, uint32_t tag, va_list ap)
	20	break;
	21	case TIFFTAG_XRESOLUTION:
	22	dblval = va_arg(ap, double);
	23	- if( dblval < 0 )
	24	+ if( dblval != dblval \|\| dblval < 0 )
	25	goto badvaluedouble;
	26	td->td_xresolution = _TIFFClampDoubleToFloat( dblval );
	27	break;
	28	case TIFFTAG_YRESOLUTION:
	29	dblval = va_arg(ap, double);
	30	- if( dblval < 0 )
	31	+ if( dblval != dblval \|\| dblval < 0 )
	32	goto badvaluedouble;
	33	td->td_yresolution = _TIFFClampDoubleToFloat( dblval );
	34	break;
	35	--
	36	GitLab
	37