wok view tiff/stuff/libtiff-CVE-2009-2285.patch @ rev 6424
Added patch to tiff to fix CVE-2009-2285 bug.
| author | Christopher Rogers <slaxemulator@gmail.com> |
|---|---|
| date | Mon Sep 27 06:21:26 2010 +0000 (2010-09-27) |
| parents | |
| children |
line source
1 Index: tiff-3.8.2/libtiff/tif_lzw.c
2 ===================================================================
3 --- tiff-3.8.2.orig/libtiff/tif_lzw.c
4 +++ tiff-3.8.2/libtiff/tif_lzw.c
5 @@ -421,7 +421,7 @@ LZWDecode(TIFF* tif, tidata_t op0, tsize
6 NextCode(tif, sp, bp, code, GetNextCode);
7 if (code == CODE_EOI)
8 break;
9 - if (code == CODE_CLEAR) {
10 + if (code >= CODE_CLEAR) {
11 TIFFErrorExt(tif->tif_clientdata, tif->tif_name,
12 "LZWDecode: Corrupted LZW table at scanline %d",
13 tif->tif_row);
14 @@ -624,7 +624,7 @@ LZWDecodeCompat(TIFF* tif, tidata_t op0,
15 NextCode(tif, sp, bp, code, GetNextCodeCompat);
16 if (code == CODE_EOI)
17 break;
18 - if (code == CODE_CLEAR) {
19 + if (code >= CODE_CLEAR) {
20 TIFFErrorExt(tif->tif_clientdata, tif->tif_name,
21 "LZWDecode: Corrupted LZW table at scanline %d",
22 tif->tif_row);