← Back to branch summary

~ubuntu-branches/ubuntu/precise/tiff/precise-security

~ubuntu-branches/ubuntu/precise/tiff/precise-security

« back to all changes in this revision

Viewing changes to tools/tiffcrop.c

Committer: Package Import Robot
Author(s): Marc Deslauriers
Date: 2015-03-30 08:11:18 UTC
Revision ID: package-import@ubuntu.com-20150330081118-bvaoaii1act27voq

Tags: 3.9.5-2ubuntu1.7

* SECURITY UPDATE: Fix multiple security issues
  - debian/patches/CVE-2014-81xx-1.patch to CVE-2014-81xx-11.patch
  - debian/patches/CVE-2014-8128-5.patch
  - debian/patches/CVE-2014-9655-1.patch to CVE-2014-9655-3.patch
  - debian/patches/read_overrun.patch
  - debian/patches/CVE-2014-8130.patch
  - CVE-2014-8127 (partially)
  - CVE-2014-8128
  - CVE-2014-8129
  - CVE-2014-8130
  - CVE-2014-9330
  - CVE-2014-9655

files added:
.pc/CVE-2014-8128-5.patch

.pc/CVE-2014-8128-5.patch/libtiff

.pc/CVE-2014-8128-5.patch/libtiff/tif_dirinfo.c

.pc/CVE-2014-8130.patch

.pc/CVE-2014-8130.patch/libtiff

.pc/CVE-2014-8130.patch/libtiff/tif_unix.c

.pc/CVE-2014-81xx-1.patch

.pc/CVE-2014-81xx-1.patch/libtiff

.pc/CVE-2014-81xx-1.patch/libtiff/tif_dir.c

.pc/CVE-2014-81xx-1.patch/libtiff/tif_getimage.c

.pc/CVE-2014-81xx-1.patch/libtiff/tif_next.c

.pc/CVE-2014-81xx-1.patch/tools

.pc/CVE-2014-81xx-1.patch/tools/bmp2tiff.c

.pc/CVE-2014-81xx-1.patch/tools/tiff2pdf.c

.pc/CVE-2014-81xx-1.patch/tools/tiffcrop.c

.pc/CVE-2014-81xx-10.patch

.pc/CVE-2014-81xx-10.patch/libtiff

.pc/CVE-2014-81xx-10.patch/libtiff/tif_read.c

.pc/CVE-2014-81xx-11.patch

.pc/CVE-2014-81xx-11.patch/tools

.pc/CVE-2014-81xx-11.patch/tools/tiffdither.c

.pc/CVE-2014-81xx-2.patch

.pc/CVE-2014-81xx-2.patch/tools

.pc/CVE-2014-81xx-2.patch/tools/tiffcp.c

.pc/CVE-2014-81xx-3.patch

.pc/CVE-2014-81xx-3.patch/tools

.pc/CVE-2014-81xx-3.patch/tools/tiff2pdf.c

.pc/CVE-2014-81xx-4.patch

.pc/CVE-2014-81xx-4.patch/libtiff

.pc/CVE-2014-81xx-4.patch/libtiff/tif_next.c

.pc/CVE-2014-81xx-5.patch

.pc/CVE-2014-81xx-5.patch/tools

.pc/CVE-2014-81xx-5.patch/tools/thumbnail.c

.pc/CVE-2014-81xx-5.patch/tools/tiffcmp.c

.pc/CVE-2014-81xx-6.patch

.pc/CVE-2014-81xx-6.patch/tools

.pc/CVE-2014-81xx-6.patch/tools/thumbnail.c

.pc/CVE-2014-81xx-7.patch

.pc/CVE-2014-81xx-7.patch/tools

.pc/CVE-2014-81xx-7.patch/tools/pal2rgb.c

.pc/CVE-2014-81xx-7.patch/tools/thumbnail.c

.pc/CVE-2014-81xx-8.patch

.pc/CVE-2014-81xx-8.patch/tools

.pc/CVE-2014-81xx-8.patch/tools/tiff2bw.c

.pc/CVE-2014-81xx-9.patch

.pc/CVE-2014-81xx-9.patch/tools

.pc/CVE-2014-81xx-9.patch/tools/tiffdump.c

.pc/CVE-2014-9655-1.patch

.pc/CVE-2014-9655-1.patch/libtiff

.pc/CVE-2014-9655-1.patch/libtiff/tif_getimage.c

.pc/CVE-2014-9655-2.patch

.pc/CVE-2014-9655-2.patch/libtiff

.pc/CVE-2014-9655-2.patch/libtiff/tif_getimage.c

.pc/CVE-2014-9655-2.patch/libtiff/tif_next.c

.pc/CVE-2014-9655-3.patch

.pc/CVE-2014-9655-3.patch/libtiff

.pc/CVE-2014-9655-3.patch/libtiff/tif_getimage.c

.pc/read_overrun.patch

.pc/read_overrun.patch/tools

.pc/read_overrun.patch/tools/thumbnail.c

.pc/read_overrun.patch/tools/tiffcrop.c

debian/patches/CVE-2014-8128-5.patch

debian/patches/CVE-2014-8130.patch

debian/patches/CVE-2014-81xx-1.patch

debian/patches/CVE-2014-81xx-10.patch

debian/patches/CVE-2014-81xx-11.patch

debian/patches/CVE-2014-81xx-2.patch

debian/patches/CVE-2014-81xx-3.patch

debian/patches/CVE-2014-81xx-4.patch

debian/patches/CVE-2014-81xx-5.patch

debian/patches/CVE-2014-81xx-6.patch

debian/patches/CVE-2014-81xx-7.patch

debian/patches/CVE-2014-81xx-8.patch

debian/patches/CVE-2014-81xx-9.patch

debian/patches/CVE-2014-9655-1.patch

debian/patches/CVE-2014-9655-2.patch

debian/patches/CVE-2014-9655-3.patch

debian/patches/read_overrun.patch

files modified:
.pc/applied-patches

debian/changelog

debian/patches/series

libtiff/tif_dir.c

libtiff/tif_dirinfo.c

libtiff/tif_getimage.c

libtiff/tif_next.c

libtiff/tif_read.c

libtiff/tif_unix.c

tools/bmp2tiff.c

tools/pal2rgb.c

tools/thumbnail.c

tools/tiff2bw.c

tools/tiff2pdf.c

tools/tiffcmp.c

tools/tiffcp.c

tools/tiffcrop.c

tools/tiffdither.c

tools/tiffdump.c

Show diffs side-by-side

added added

removed removed

tools/tiffcrop.c

1205

1205

tsize_t tilesize = TIFFTileSize(out);

1206

1206

unsigned char *tilebuf = NULL;

1207

1207

1208

TIFFGetField(out, TIFFTAG_TILELENGTH, &tl);

1209

TIFFGetField(out, TIFFTAG_TILEWIDTH, &tw);

1210

TIFFGetField(out, TIFFTAG_BITSPERSAMPLE, &bps);

1208

if( !TIFFGetField(out, TIFFTAG_TILELENGTH, &tl) ||

1209

!TIFFGetField(out, TIFFTAG_TILEWIDTH, &tw) ||

1210

!TIFFGetField(out, TIFFTAG_BITSPERSAMPLE, &bps) )

1211

return 1;

1211

1212

1212

1213

tile_buffsize = tilesize;

1213

1214

if (tilesize < (tsize_t)(tl * tile_rowsize))

5995

5996

}

5996

5997

5997

5998

read_buff = *read_ptr;

5999

/* +3 : add a few guard bytes since reverseSamples16bits() can read a bit */

6000

/* outside buffer */

5998

6001

if (!read_buff)

5999

read_buff = (unsigned char *)_TIFFmalloc(buffsize);

6002

read_buff = (unsigned char *)_TIFFmalloc(buffsize+3);

6000

6003

else

6001

6004

{

6002

6005

if (prev_readsize < buffsize)

6005

6008

if (!new_buff)

6006

6009

{

6007

6010

free (read_buff);

6008

read_buff = (unsigned char *)_TIFFmalloc(buffsize);

6011

read_buff = (unsigned char *)_TIFFmalloc(buffsize+3);

6009

6012

}

6010

6013

else

6011

6014

read_buff = new_buff;

6012

6015

}

6013

6016

}

6017

read_buff[buffsize] = 0;

6018

read_buff[buffsize+1] = 0;

6019

read_buff[buffsize+2] = 0;

6014

6020

6015

6021

if (!read_buff)

6016

6022

{

Older »