summary |
shortlog | log |
commit |
commitdiff |
tree
first ⋅ prev ⋅ next
jiyong.min [Tue, 4 Feb 2020 00:41:35 +0000 (09:41 +0900)]
Bump to 4.1.0
Change-Id: I7b3fe33b381e73f958373297c8fa6d3a1b5f0fb9
jiyong.min [Mon, 3 Feb 2020 05:35:31 +0000 (14:35 +0900)]
Imported Upstream version 4.1.0 into tizen
Change-Id: I2cc5931164e948a314151ae382e10250d796178c
jiyong.min [Sun, 2 Feb 2020 23:09:06 +0000 (08:09 +0900)]
Imported Upstream version 4.1.0
Change-Id: Id5c5de8e7d824aef50cc40fd66891db3df90791d
jiyong.min [Fri, 28 Dec 2018 05:02:45 +0000 (14:02 +0900)]
Change wrong package name
Change-Id: I9f61ca225ce2048cea369367114b5d42d193ea5d
jiyong.min [Mon, 10 Dec 2018 01:27:44 +0000 (10:27 +0900)]
Bump to 4.0.10
Change-Id: Ib655f35cfaae387bbce0c7fea1eedda8dd61cd40
jiyong.min [Mon, 19 Nov 2018 01:04:34 +0000 (10:04 +0900)]
Imported Upstream version 4.0.10 into tizen
Change-Id: Ib3dfc4f5333781959b6f99224e3b3c3bc7428a11
jiyong.min [Mon, 19 Nov 2018 00:03:54 +0000 (09:03 +0900)]
Imported Upstream version 4.0.10
Change-Id: Ib05f6ee8549306f2ff30e21d2deba45af2dfd9f7
jiyong.min [Mon, 1 Oct 2018 01:08:05 +0000 (10:08 +0900)]
Replace the opensource URL
Change-Id: Ibfaec018706de4c11f0dc7cf313fa60525c54e3b
Jiyong Min [Fri, 6 Jul 2018 00:16:56 +0000 (09:16 +0900)]
tiff2pdf: Fix CVE-2017-9935
Fix for http://bugzilla.maptools.org/show_bug.cgi?id=2704
Change-Id: I6cf79bc0865a1272f61fbb44a4ac547f7e67ef5d
Jiyong Min [Thu, 14 Jun 2018 23:03:02 +0000 (08:03 +0900)]
TIFFWriteDirectorySec: avoid assertion.
Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2795. CVE-2018-10963
Change-Id: I451e25eb6daa43422ed8a8b241203c7d5072c727
Jiyong Min [Sun, 13 May 2018 22:54:01 +0000 (07:54 +0900)]
[CVE-2017-18013] Apply CVE patch
Change-Id: I663956752d932fc080d5002cf4e33ed55f8205b5
Jiyong Min [Fri, 20 Apr 2018 02:31:05 +0000 (11:31 +0900)]
Bump to 4.0.9
Change-Id: I272a5a9508c0288894200bbdbfac5a1a6546ac2e
Jiyong Min [Fri, 20 Apr 2018 02:19:50 +0000 (11:19 +0900)]
Imported Upstream version 4.0.9 from branch 'origin/upstream' into tizen
Conflicts:
ChangeLog
libtiff/tif_dirread.c
libtiff/tif_luv.c
libtiff/tif_ojpeg.c
libtiff/tif_pixarlog.c
libtiff/tif_read.c
libtiff/tiffiop.h
tools/tiffcp.c
Change-Id: I1935e168a483153ec40a8f17a39ba4964178b694
Jiyong Min [Thu, 4 Jan 2018 23:02:59 +0000 (08:02 +0900)]
Imported Upstream version 4.0.9
Change-Id: I227fcd36c78a251a89ac08c47aeeaf0600286e23
Jiyong Min [Fri, 16 Jun 2017 04:16:40 +0000 (13:16 +0900)]
Apply CVE patches
CVE-2016-10092
Heap-based buffer overflow in the readContigStripsIntoBuffer function in tif_unix.c
in LibTIFF 4.0.7 allows remote attackers to have unspecified impact via a crafted image.
CVE-2016-10093
Integer overflow in tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to have
unspecified impact via a crafted image, which triggers a heap-based buffer overflow.
CVE-2016-10266
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero
error and application crash) via a crafted TIFF image, related to libtiff/tif_read.c:351:22.
CVE-2016-10267
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (divide-by-zero
error and application crash) via a crafted TIFF image, related to libtiff/tif_ojpeg.c:816:8.
CVE-2016-10268
tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service
(integer underflow and heap-based buffer under-read) or possibly have unspecified other
impact via a crafted TIFF image, related to "READ of size 78490" and libtiff/tif_unix.c:115:23.
CVE-2016-10269
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer
over-read) or possibly have unspecified other impact via a crafted TIFF image,
related to "READ of size 512" and libtiff/tif_unix.c:340:2.
CVE-2016-10270
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer
over-read) or possibly have unspecified other impact via a crafted TIFF image,
related to "READ of size 8" and libtiff/tif_read.c:523:22.
CVE-2016-10271
tools/tiffcrop.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service
(heap-based buffer over-read and buffer overflow) or possibly have unspecified other
impact via a crafted TIFF image, related to "READ of size 1" and libtiff/tif_fax3.c:413:13.
CVE-2016-10272
LibTIFF 4.0.7 allows remote attackers to cause a denial of service (heap-based buffer
overflow) or possibly have unspecified other impact via a crafted TIFF image,
related to "WRITE of size 2048" and libtiff/tif_next.c:64:9.
CVE-2017-5225
LibTIFF version 4.0.7 is vulnerable to a heap buffer overflow in the tools/tiffcp
resulting in DoS or code execution via a crafted BitsPerSample value.
Change-Id: I434b78119e17f22d6b2fd23cdeecfca5d8fce567
Signed-off-by: Jiyong Min <jiyong.min@samsung.com>
Jiyong Min [Wed, 10 May 2017 07:53:36 +0000 (16:53 +0900)]
Bump to 4.0.7
Change-Id: I4624e2a910df32e0e26a7d76671402e35f77a258
Signed-off-by: Jiyong Min <jiyong.min@samsung.com>
Jiyong Min [Wed, 10 May 2017 03:20:24 +0000 (12:20 +0900)]
Imported Upstream version 4.0.7 from branch 'origin/upstream' into tizen
Conflicts:
ChangeLog
libtiff/tif_pixarlog.c
tools/tiff2pdf.c
Change-Id: Ib3a078c3cdeb2fea6d2cb2ea4eabcfef5782f01f
Signed-off-by: Jiyong Min <jiyong.min@samsung.com>
Jiyong Min [Tue, 2 May 2017 07:00:25 +0000 (16:00 +0900)]
Imported Upstream version 4.0.7
Change-Id: I65175a4698a93b03aed6ebe4d68ab5e64deb4816
Signed-off-by: jiyong min <jiyong.min@samsung.com>
Jiyong Min [Tue, 28 Mar 2017 10:18:01 +0000 (19:18 +0900)]
Use license macro in spec file
Change-Id: I654a6d46c72d538453c885de19bb5aebcf089e1f
Signed-off-by: Jiyong Min <jiyong.min@samsung.com>
Jiyong Min [Tue, 22 Nov 2016 23:14:48 +0000 (08:14 +0900)]
[TSAM-10146] LibTiff fix security bug for CVE-2016-5652, CVE-2016-5875
- CVE :
[CVE-2016-5652] LibTIFF TIFF2PDF TIFFTAG_JPEGTABLES Remote Code Execution Vulnerability
[CVE-2016-5875] LibTIFF PixarLogDecode Remote Code Execution Vulnerability
- Reference :
http://www.talosintelligence.com/reports/TALOS-2016-0205/
http://www.talosintelligence.com/reports/TALOS-2016-0187/
Change-Id: Ia0db291d180c7e1dae04242c4f3de6e92b895441
Signed-off-by: Jiyong Min <jiyong.min@samsung.com>
Vineeth TM [Thu, 11 Feb 2016 05:40:20 +0000 (14:40 +0900)]
packaging: bump to 4.0.6
Change-Id: I8e0f96b41146f0a4b571dbd6c69673385e9a3b3d
Signed-off-by: Vineeth TM <vineeth.tm@samsung.com>
Vineeth TM [Thu, 11 Feb 2016 05:12:38 +0000 (14:12 +0900)]
Imported Upstream version 4.0.6 from branch 'origin/upstream' into tizen
Change-Id: Ida4f35f0b0a112716087d1ec5725b4475752881a
Signed-off-by: Vineeth TM <vineeth.tm@samsung.com>
Vineeth TM [Thu, 11 Feb 2016 04:10:08 +0000 (13:10 +0900)]
Imported upstream version 4.0.6
Change-Id: I73b220cdae18143f4e36e527f098afebf6c26486
Signed-off-by: Vineeth TM <vineeth.tm@samsung.com>
Ji Yong Min [Wed, 30 Dec 2015 06:23:57 +0000 (15:23 +0900)]
Update package license
Change-Id: I1fc42077891aee5830a17eafe8fefd70a84e1fa9
Signed-off-by: Jiyong Min <jiyong.min@samsung.com>
Philippe Coval [Fri, 7 Nov 2014 16:02:07 +0000 (17:02 +0100)]
packaging: Bump to 4.0.3
Change-Id: Ib7696744e962dbde2ee594f46ce42821d7cd095e
Bug-Tizen: TC-1874
Signed-off-by: Philippe Coval <philippe.coval@open.eurogiciel.org>
Alexandru Cornea [Sat, 29 Jun 2013 02:35:11 +0000 (05:35 +0300)]
resetting manifest requested domain to floor
Anas Nashif [Wed, 7 Nov 2012 00:48:58 +0000 (16:48 -0800)]
remove patches
Anas Nashif [Wed, 7 Nov 2012 00:46:22 +0000 (16:46 -0800)]
tiff2pdf colors
Anas Nashif [Wed, 7 Nov 2012 00:45:46 +0000 (16:45 -0800)]
seek
Anas Nashif [Wed, 7 Nov 2012 00:44:29 +0000 (16:44 -0800)]
add packaging
Anas Nashif [Wed, 7 Nov 2012 00:43:50 +0000 (16:43 -0800)]
add packaging
Philippe Coval [Fri, 7 Nov 2014 14:03:38 +0000 (15:03 +0100)]
Imported Upstream version 4.0.3
Anas Nashif [Wed, 7 Nov 2012 00:43:48 +0000 (16:43 -0800)]
Imported Upstream version 4.0.2
projects / platform / upstream / tiff.git / log