tiff: mark CVE-2023-30774 as patched

[1] points tu issue [2] which was fixed by [3] together with lot of other issues. We already have this patch, so mark CVE-2023-30774 in it. Also split CVE tag to separate entries. [1] https://nvd.nist.gov/vuln/detail/CVE-2023-30774 [2] https://gitlab.com/libtiff/libtiff/-/issues/463 [3] https://gitlab.com/libtiff/libtiff/-/merge_requests/385 (From OE-Core rev: 87893c72efbba029c5f2a9e8e3fff126b2a0cb71) Signed-off-by: Peter Marko <peter.marko@siemens.com> Signed-off-by: Steve Sakoman <steve@sakoman.com>
author: Peter Marko <peter.marko@siemens.com> 2025-03-16 17:50:25 +0100
committer: Steve Sakoman <steve@sakoman.com> 2025-03-27 08:16:30 -0700
commit: 88aec329b88be3ff85102c2fb29f2f167599dab8 (patch)
tree: 368ece097f3f65a5d815473328dc18e000073f05
parent: 8660c1bd8d38d4061c51a3fdd05e1181081bec22 (diff)
download: poky-88aec329b88be3ff85102c2fb29f2f167599dab8.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/meta/recipes-multimedia/libtiff/tiff/0001-Revised-handling-of-TIFFTAG_INKNAMES-and-related-TIF.patch b/meta/recipes-multimedia/libtiff/tiff/0001-Revised-handling-of-TIFFTAG_INKNAMES-and-related-TIF.patch
index 17b37be041..261421b399 100644
--- a/meta/recipes-multimedia/libtiff/tiff/0001-Revised-handling-of-TIFFTAG_INKNAMES-and-related-TIF.patch
+++ b/meta/recipes-multimedia/libtiff/tiff/0001-Revised-handling-of-TIFFTAG_INKNAMES-and-related-TIF.patch
@@ -23,7 +23,9 @@ This MR will close the following issues:  #149, #150, #152, #168 (to be checked)
 It also fixes the old bug at http://bugzilla.maptools.org/show_bug.cgi?id=2599, for which the limitation of `NumberOfInks = SPP` was introduced, which is in my opinion not necessary and does not solve the general issue.
-CVE: CVE-2022-3599 CVE-2022-4645
+CVE: CVE-2022-3599
+CVE: CVE-2022-4645
+CVE: CVE-2023-30774
 Upstream-Status: Backport [https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246.patch]
 Signed-off-by: Ross Burton <ross.burton@arm.com>
 Signed-off-by: Pawan Badganchi <Pawan.Badganchi@kpit.com>
author	Peter Marko <peter.marko@siemens.com>	2025-03-16 17:50:25 +0100
committer	Steve Sakoman <steve@sakoman.com>	2025-03-27 08:16:30 -0700
commit	88aec329b88be3ff85102c2fb29f2f167599dab8 (patch)
tree	368ece097f3f65a5d815473328dc18e000073f05
parent	8660c1bd8d38d4061c51a3fdd05e1181081bec22 (diff)
download	poky-88aec329b88be3ff85102c2fb29f2f167599dab8.tar.gz

diff --git a/meta/recipes-multimedia/libtiff/tiff/0001-Revised-handling-of-TIFFTAG_INKNAMES-and-related-TIF.patch b/meta/recipes-multimedia/libtiff/tiff/0001-Revised-handling-of-TIFFTAG_INKNAMES-and-related-TIF.patch index 17b37be041..261421b399 100644 --- a/meta/recipes-multimedia/libtiff/tiff/0001-Revised-handling-of-TIFFTAG_INKNAMES-and-related-TIF.patch +++ b/meta/recipes-multimedia/libtiff/tiff/0001-Revised-handling-of-TIFFTAG_INKNAMES-and-related-TIF.patch
@@ -23,7 +23,9 @@ This MR will close the following issues: #149, #150, #152, #168 (to be checked)
23		23
24	It also fixes the old bug at http://bugzilla.maptools.org/show_bug.cgi?id=2599, for which the limitation of `NumberOfInks = SPP` was introduced, which is in my opinion not necessary and does not solve the general issue.	24	It also fixes the old bug at http://bugzilla.maptools.org/show_bug.cgi?id=2599, for which the limitation of `NumberOfInks = SPP` was introduced, which is in my opinion not necessary and does not solve the general issue.
25		25
26	CVE: CVE-2022-3599 CVE-2022-4645	26	CVE: CVE-2022-3599
		27	CVE: CVE-2022-4645
		28	CVE: CVE-2023-30774
27	Upstream-Status: Backport [https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246.patch]	29	Upstream-Status: Backport [https://gitlab.com/libtiff/libtiff/-/commit/e813112545942107551433d61afd16ac094ff246.patch]
28	Signed-off-by: Ross Burton <ross.burton@arm.com>	30	Signed-off-by: Ross Burton <ross.burton@arm.com>
29	Signed-off-by: Pawan Badganchi <Pawan.Badganchi@kpit.com>	31	Signed-off-by: Pawan Badganchi <Pawan.Badganchi@kpit.com>