Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | tiff: upgrade to 4.5.1 | Ross Burton | 2023-07-10 | 1 | -39/+0 |
| | | | | | | | | | | Also remove old CVE_CHECK_IGNOREs which are no longer needed due to CPE updates. (From OE-Core rev: 2200fde7011c4206382150c2602b2eb17423d45e) Signed-off-by: Ross Burton <ross.burton@arm.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> | ||||
* | tiff: backport a fix for CVE-2023-2731 | Natasha Bailey | 2023-06-01 | 1 | -0/+39 |
This patch fixes an issue in libtiff's LZWDecode function which could cause a null pointer dereference. (From OE-Core rev: 7da5abf23232f61bf8009b4b8e97632768867e07) Signed-off-by: Natasha Bailey <nat.bailey@windriver.com> Signed-off-by: Randy MacLeod <Randy.MacLeod@windriver.com> Signed-off-by: Alexandre Belloni <alexandre.belloni@bootlin.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org> |