| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| add-a-tif_config.h-include.patch | [PATCH] tif_hash_set.c: add a tif_config.h include (mostly for GDAL renaming symbols trick) | Even Rouault <even.rouault@spatialys.com> | no | 2022-12-14 | ||
| TIFFWriteDirectorySec_avoid_harmless_unsigned-integer-overflow.patch | [PATCH] TIFFWriteDirectorySec(): avoid harmless unsigned-integer-overflow Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=54311 |
Even Rouault <even.rouault@spatialys.com> | no | 2022-12-14 | ||
| TIFFSetDirectory_avoid_harmless_unsigned-integer-overflow.patch | [PATCH] TIFFSetDirectory: avoid harmless unsigned-integer-overflow Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=54343 |
Even Rouault <even.rouault@spatialys.com> | no | 2022-12-15 | ||
| no_smartquotes.patch | Don't use smartquotes for Sphinx Don't let Sphinx inconsistently alter quotes and dashes in rst files. | Laszlo Boszormenyi (GCS) <gcs@debian.org> | no | debian | 2023-01-12 | |
| CVE-2022-48281.patch | [PATCH] tiffcrop: Correct simple copy paste error. Fix #488. | Su Laus <sulau@freenet.de> | no | 2023-01-21 | ||
| tiffcrop_correctly_update_buffersize.patch | [PATCH] tiffcrop correctly update buffersize after rotateImage() fix#520 rotateImage() set up a new buffer and calculates its size individually. Therefore, seg_buffs[] size needs to be updated accordingly. Before this fix, the seg_buffs buffer size was calculated with a different formula than within rotateImage(). Closes #520. |
Su_Laus <sulau@freenet.de> | no | 2023-02-03 | ||
| TIFFClose_avoid_NULL_pointer_dereferencing.patch | [PATCH] TIFFClose() avoid NULL pointer dereferencing. fix#515 Closes #515 |
Su_Laus <sulau@freenet.de> | no | 2023-02-03 | ||
| CVE-2023-0800_CVE-2023-0801_CVE-2023-0802_CVE-2023-0803_CVE-2023-0804.patch | [PATCH] tiffcrop: added check for assumption on composite images (fixes #496) Closes #496, #497, #498, #500, #501. |
Su Laus <sulau@freenet.de> | no | 2023-02-05 | ||
| CVE-2023-0795_CVE-2023-0796_CVE-2023-0797_CVE-2023-0798_CVE-2023-0799.patch | [PATCH] tiffcrop: Amend rotateImage() not to toggle the input (main) image width and length parameters when only cropped image sections are rotated. Remove buffptr from region structure because never used. Closes #492 #493 #494 #495 #499 #518 #519 |
Su_Laus <sulau@freenet.de> | no | 2023-01-29 | ||
| CVE-2023-2731.patch | [PATCH] LZWDecode(): avoid crash when trying to read again from a strip with a missing end-of-information marker (fixes #548) | Even Rouault <even.rouault@spatialys.com> | no | 2023-04-29 | ||
| CVE-2023-3576.patch | [PATCH] Fix memory leak in tiffcrop.c | zhailiangliang <zhailiangliang@loongson.cn> | no | 2023-03-07 | ||
| CVE-2023-40745.patch | [PATCH] tiffcp: fix memory corruption (overflow) on hostile images (fixes #591) | Arie Haenel <arie.haenel@jct.ac.il> | no | 2023-07-19 | ||
| CVE-2023-41175.patch | [PATCH] raw2tiff: fix integer overflow and bypass of the check (fixes #592) | Arie Haenel <arie.haenel@jct.ac.il> | no | 2023-07-19 |