1
From 3206e0c752a62da1ae606867113ed3bf9bf73306 Mon Sep 17 00:00:00 2001
2
From: erouault <erouault>
3
Date: Sun, 21 Dec 2014 19:53:59 +0000
4
Subject: [PATCH] * tools/thumbnail.c: fix out-of-buffer write
5
http://bugzilla.maptools.org/show_bug.cgi?id=2489 (CVE-2014-8128)
9
tools/thumbnail.c | 8 +++++++-
10
2 files changed, 12 insertions(+), 1 deletion(-)
12
Index: tiff-3.9.5/tools/thumbnail.c
13
===================================================================
14
--- tiff-3.9.5.orig/tools/thumbnail.c 2015-03-30 07:47:09.929107438 -0400
15
+++ tiff-3.9.5/tools/thumbnail.c 2015-03-30 07:47:09.929107438 -0400
20
- rows[nrows++] = br + bpr*sy;
22
+ /* We should perhaps error loudly, but I can't make sense of that */
26
+ rows[nrows++] = br + bpr*sy;
29
setrow(row, nrows, rows);