]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 086308a) | patch
tiff: Security fixes
authorYi Zhao <yi.zhao@windriver.com>
Mon, 19 Mar 2018 23:53:20 +0000 (07:53 +0800)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Sun, 25 Mar 2018 08:33:34 +0000 (09:33 +0100)
commit798b6b4b3ce370264d036e555185a99ce3aa97b7
treeafdd6b190e8ebe7046763a35acc85e6f9556d0eetree | snapshot
parent086308aa2a5e332de6f00ed397c4a55d132f158fcommit | diff
tiff: Security fixes

Fix CVE-2017-99935, CVE-2017-18013, CVE-2018-5784

References:
https://nvd.nist.gov/vuln/detail/CVE-2017-9935
https://nvd.nist.gov/vuln/detail/CVE-2017-18013
https://nvd.nist.gov/vuln/detail/CVE-2018-5784

Patches from:
CVE-2017-9935:
https://gitlab.com/libtiff/libtiff/commit/3dd8f6a357981a4090f126ab9025056c938b6940
CVE-2017-18013:
https://gitlab.com/libtiff/libtiff/commit/c6f41df7b581402dfba3c19a1e3df4454c551a01
CVE-2018-5784:
https://gitlab.com/libtiff/libtiff/commit/473851d211cf8805a161820337ca74cc9615d6ef

Signed-off-by: Yi Zhao <yi.zhao@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
meta/recipes-multimedia/libtiff/files/CVE-2017-18013.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/files/CVE-2017-9935.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/files/CVE-2018-5784.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/tiff_4.0.9.bb diff | blob | history
Mirror of the official openembedded-core repository