mirror of
https://git.yoctoproject.org/poky
synced 2026-05-01 15:32:12 +02:00
863bfa81af
* tools/tiffcrop.c: fix read of undefined buffer in
readContigStripsIntoBuffer() due to uint16 overflow.
External References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-9538
Patch from:
43c0b81a81 (diff-c8b4b355f9b5c06d585b23138e1c185f)
(From OE-Core rev: 9af5d5ea882c853e4cb15006f990d3814eeea9ae)
(From OE-Core rev: 33cad1173f6d1b803b794a2ec57fe8a9ef19fb44)
(From OE-Core rev: 5597998cf8b852bfe9b794d83314090a148bf78b)
Signed-off-by: Mingli Yu <Mingli.Yu@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
Signed-off-by: Armin Kuster <akuster808@gmail.com>
Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>