main/tiff: security fix es for CVE-2013-4243 and CVE-2013-4244

ref #3081
author: Natanael Copa <ncopa@alpinelinux.org> 2014-06-24 12:22:39 +0000
committer: Natanael Copa <ncopa@alpinelinux.org> 2014-06-24 12:23:53 +0000
commit: cab4b718abc4b3179498c45354d0adf651156789 (patch)
tree: 9b580428b60cb26c61e7d4bcef58ac0f2c85d89a /main/tiff/libtiff-CVE-2013-4244.patch
parent: d911f2daafe662bea88751ecc9a84d183a76fdeb (diff)
download: aports-cab4b718abc4b3179498c45354d0adf651156789.tar.bz2
aports-cab4b718abc4b3179498c45354d0adf651156789.tar.xz
1 files changed, 15 insertions, 0 deletions
diff --git a/main/tiff/libtiff-CVE-2013-4244.patch b/main/tiff/libtiff-CVE-2013-4244.patch
new file mode 100644
index 0000000000..792e076981
--- /dev/null
+++ b/main/tiff/libtiff-CVE-2013-4244.patch
@@ -0,0 +1,15 @@
+diff --git a/tools/gif2tiff.c b/tools/gif2tiff.c
+index 375b152..2731273 100644
+--- a/tools/gif2tiff.c
++++ b/tools/gif2tiff.c
+@@ -402,6 +402,10 @@ process(register int code, unsigned char** fill)
+     }
+ 
+     if (oldcode == -1) {
++        if (code >= clear) {
++            fprintf(stderr, "bad input: code=%d is larger than clear=%d\n",code, clear);
++            return 0;
++        }
+ 	*(*fill)++ = suffix[code];
+ 	firstchar = oldcode = code;
+ 	return 1;
author	Natanael Copa <ncopa@alpinelinux.org>	2014-06-24 12:22:39 +0000
committer	Natanael Copa <ncopa@alpinelinux.org>	2014-06-24 12:23:53 +0000
commit	cab4b718abc4b3179498c45354d0adf651156789 (patch)
tree	9b580428b60cb26c61e7d4bcef58ac0f2c85d89a /main/tiff/libtiff-CVE-2013-4244.patch
parent	d911f2daafe662bea88751ecc9a84d183a76fdeb (diff)
download	aports-cab4b718abc4b3179498c45354d0adf651156789.tar.bz2 aports-cab4b718abc4b3179498c45354d0adf651156789.tar.xz