]> git.ipfire.org Git - thirdparty/openembedded/openembedded-core-contrib.git/commit
projects / thirdparty / openembedded / openembedded-core-contrib.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 3d79514) | patch
tiff: Security fix for CVE-2024-13978, CVE-2025-8176, CVE-2025-8177
authorSiddharth Doshi <sdoshi@mvista.com>
Fri, 29 Aug 2025 09:30:06 +0000 (15:00 +0530)
committerSteve Sakoman <steve@sakoman.com>
Tue, 2 Sep 2025 16:59:02 +0000 (09:59 -0700)
commitf52df68fc89f0da9ea8ea8197462c9f55d0de46c
tree87565937df2b8852c9ce8564ea48bf01fc87ae31tree | snapshot
parent3d79514f90a6f731a5333417641500b8e52e410acommit | diff
tiff: Security fix for CVE-2024-13978, CVE-2025-8176, CVE-2025-8177

Upstream-Status: Backport from [https://gitlab.com/libtiff/libtiff/-/commit/7be20ccaab97455f192de0ac561ceda7cd9e12d1, https://gitlab.com/libtiff/libtiff/-/commit/2ebfffb0e8836bfb1cd7d85c059cd285c59761a4, https://gitlab.com/libtiff/libtiff/-/commit/3994cf3b3bc6b54c32f240ca5a412cffa11633fa, https://gitlab.com/libtiff/libtiff/-/commit/ce46f002eca4148497363f80fab33f9396bcbeda, https://gitlab.com/libtiff/libtiff/-/commit/ecc4ddbf1f0fed7957d1e20361e37f01907898e0, https://gitlab.com/libtiff/libtiff/-/commit/75d8eca6f106c01aadf76b8500a7d062b12f2d82, https://gitlab.com/libtiff/libtiff/-/commit/e8c9d6c616b19438695fd829e58ae4fde5bfbc22]

CVE's Fixed:
CVE-2024-13978 libtiff: LibTIFF Null Pointer Dereference
CVE-2025-8176 libtiff: LibTIFF Use-After-Free Vulnerability
CVE-2025-8177 libtiff: LibTIFF Buffer Overflow

(From OE-Core rev: 16d8a873c57b174e4d6581b58d890f2157aa2f2c)

Signed-off-by: Siddharth Doshi <sdoshi@mvista.com>
Signed-off-by: Mathieu Dubois-Briand <mathieu.dubois-briand@bootlin.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Yogita Urade <yogita.urade@windriver.com>
Signed-off-by: Steve Sakoman <steve@sakoman.com>
meta/recipes-multimedia/libtiff/tiff/CVE-2024-13978_1.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/tiff/CVE-2024-13978_2.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/tiff/CVE-2025-8176_1.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/tiff/CVE-2025-8176_2.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/tiff/CVE-2025-8176_3.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/tiff/CVE-2025-8177_1.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/tiff/CVE-2025-8177_2.patch [new file with mode: 0644] blob
meta/recipes-multimedia/libtiff/tiff_4.7.0.bb diff | blob | blame | history
Mirror of git://git.openembedded.org/openembedded-core-contrib