Debian Patches

Status for tiff/4.5.0-6+deb12u2

Patch Description Author Forwarded Bugs Origin Last update
add-a-tif_config.h-include.patch [PATCH] tif_hash_set.c: add a tif_config.h include (mostly for GDAL renaming symbols trick) Even Rouault <even.rouault@spatialys.com> no 2022-12-14
TIFFWriteDirectorySec_avoid_harmless_unsigned-integer-overflow.patch [PATCH] TIFFWriteDirectorySec(): avoid harmless unsigned-integer-overflow

Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=54311		 Even Rouault <even.rouault@spatialys.com> no 2022-12-14
TIFFSetDirectory_avoid_harmless_unsigned-integer-overflow.patch [PATCH] TIFFSetDirectory: avoid harmless unsigned-integer-overflow
Fixes https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=54343		 Even Rouault <even.rouault@spatialys.com> no 2022-12-15
no_smartquotes.patch Don't use smartquotes for Sphinx Don't let Sphinx inconsistently alter quotes and dashes in rst files. Laszlo Boszormenyi (GCS) <gcs@debian.org> no debian 2023-01-12
CVE-2022-48281.patch [PATCH] tiffcrop: Correct simple copy paste error. Fix #488. Su Laus <sulau@freenet.de> no 2023-01-21
tiffcrop_correctly_update_buffersize.patch [PATCH] tiffcrop correctly update buffersize after rotateImage() fix#520 rotateImage() set up a new buffer and calculates its size
individually. Therefore, seg_buffs[] size needs to be updated accordingly.
Before this fix, the seg_buffs buffer size was calculated with a different
formula than within rotateImage().

Closes #520.		 Su_Laus <sulau@freenet.de> no 2023-02-03
TIFFClose_avoid_NULL_pointer_dereferencing.patch [PATCH] TIFFClose() avoid NULL pointer dereferencing. fix#515
Closes #515		 Su_Laus <sulau@freenet.de> no 2023-02-03
CVE-2023-0800_CVE-2023-0801_CVE-2023-0802_CVE-2023-0803_CVE-2023-0804.patch [PATCH] tiffcrop: added check for assumption on composite images (fixes #496)


Closes #496, #497, #498, #500, #501.		 Su Laus <sulau@freenet.de> no 2023-02-05
CVE-2023-0795_CVE-2023-0796_CVE-2023-0797_CVE-2023-0798_CVE-2023-0799.patch [PATCH] tiffcrop: Amend rotateImage() not to toggle the input (main) image width and length parameters when only cropped image sections are
rotated. Remove buffptr from region structure because never used.

Closes #492 #493 #494 #495 #499 #518 #519		 Su_Laus <sulau@freenet.de> no 2023-01-29
CVE-2023-2731.patch [PATCH] LZWDecode(): avoid crash when trying to read again from a strip with a missing end-of-information marker (fixes #548) Even Rouault <even.rouault@spatialys.com> no 2023-04-29
CVE-2023-3576.patch [PATCH] Fix memory leak in tiffcrop.c zhailiangliang <zhailiangliang@loongson.cn> no 2023-03-07
CVE-2023-40745.patch [PATCH] tiffcp: fix memory corruption (overflow) on hostile images (fixes #591) Arie Haenel <arie.haenel@jct.ac.il> no 2023-07-19
CVE-2023-41175.patch [PATCH] raw2tiff: fix integer overflow and bypass of the check (fixes #592) Arie Haenel <arie.haenel@jct.ac.il> no 2023-07-19
CVE-2023-26965.patch [PATCH] tiffcrop: Do not reuse input buffer for subsequent images. Fix issue 527 Su_Laus <sulau@freenet.de> no 2023-02-14
CVE-2023-25433.patch [PATCH] tiffcrop correctly update buffersize after rotateImage() fix#520 -- enlarge buffsize and check integer overflow within rotateImage(). Su_Laus <sulau@freenet.de> no 2023-02-04
CVE-2023-3618.patch [PATCH] Consider error return of writeSelections(). Fixes #553 Su_Laus <sulau@freenet.de> no 2023-05-05
CVE-2023-2908.patch [PATCH] countInkNamesString(): fix `UndefinedBehaviorSanitizer`: applying zero offset to null pointer xiaoxiaoafeifei <lliangliang2007@163.com> no 2023-04-21
CVE-2023-52356.patch [PATCH] TIFFReadRGBAStrip/TIFFReadRGBATile: add more validation of col/row (fixes #622) Even Rouault <even.rouault@spatialys.com> no 2023-10-31
CVE-2023-26966.patch [PATCH] tif_luv: Check and correct for NaN data in uv_encode(). Su_Laus <sulau@freenet.de> no 2023-02-16
CVE-2024-7006.patch [PATCH] Check return value of _TIFFCreateAnonField(). Su_Laus <sulau@freenet.de> no 2023-12-01

All known versions for source package 'tiff'

Links