1 files changed, 19 insertions, 0 deletions
diff --git a/meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4244.patch b/meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4244.patch
new file mode 100644
index 0000000000..1a668307ae
--- /dev/null
+++ b/meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4244.patch
@@ -0,0 +1,19 @@
+This patch comes from: https://github.com/vadz/libtiff/commit/ce6841d9e41d621ba23cf18b190ee6a23b2cc833
+Upstream-Status: Backport
+Signed-off-by: Baogen shang <baogen.shang@windriver.com>
+--- a/tools/gif2tiff.c  2013-12-17 16:46:02.160814995 +0800
+++ b/tools/gif2tiff.c  2013-12-17 16:52:25.140814949 +0800
+@@ -406,6 +406,11 @@
+         return 0;
+     }
+     if (oldcode == -1) {
+    if (code >= clear) {
+        fprintf(stderr, "bad input: code=%d is larger than clear=%d\n",code, clear);
+        return 0;
+       }
+
+        *(*fill)++ = suffix[code];
+        firstchar = oldcode = code;
+        return 1;

diff --git a/meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4244.patch b/meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4244.patch new file mode 100644 index 0000000000..1a668307ae --- /dev/null +++ b/meta/recipes-multimedia/libtiff/files/libtiff-CVE-2013-4244.patch
@@ -0,0 +1,19 @@
	1	This patch comes from: https://github.com/vadz/libtiff/commit/ce6841d9e41d621ba23cf18b190ee6a23b2cc833
	2
	3	Upstream-Status: Backport
	4
	5	Signed-off-by: Baogen shang <baogen.shang@windriver.com>
	6	--- a/tools/gif2tiff.c 2013-12-17 16:46:02.160814995 +0800
	7	+++ b/tools/gif2tiff.c 2013-12-17 16:52:25.140814949 +0800
	8	@@ -406,6 +406,11 @@
	9	return 0;
	10	}
	11	if (oldcode == -1) {
	12	+ if (code >= clear) {
	13	+ fprintf(stderr, "bad input: code=%d is larger than clear=%d\n",code, clear);
	14	+ return 0;
	15	+ }
	16	+
	17	(fill)++ = suffix[code];
	18	firstchar = oldcode = code;
	19	return 1;