Hello community, here is the log from the commit of package tiff for openSUSE:Factory checked in at 2013-06-28 19:29:18 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/tiff (Old) and /work/SRC/openSUSE:Factory/.tiff.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "tiff" Changes: -------- --- /work/SRC/openSUSE:Factory/tiff/tiff.changes 2013-05-03 13:52:31.000000000 +0200 +++ /work/SRC/openSUSE:Factory/.tiff.new/tiff.changes 2013-06-28 19:29:19.000000000 +0200 @@ -1,0 +2,7 @@ +Wed Jun 26 10:48:50 UTC 2013 - pgajdos@suse.com + +- tiff2pdf: introduced warning when the compression isn't lzw or + none [bnc#819142] +- tiff2pdf: fixed crash [bnc#821872] + +------------------------------------------------------------------- New: ---- tiff-4.0.3-compress-warning.patch tiff-4.0.3-double-free.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ tiff.spec ++++++ --- /var/tmp/diff_new_pack.ZKQoHx/_old 2013-06-28 19:29:20.000000000 +0200 +++ /var/tmp/diff_new_pack.ZKQoHx/_new 2013-06-28 19:29:20.000000000 +0200 @@ -52,6 +52,10 @@ Patch3: tiff-%{version}-CVE-2012-4564.patch Patch4: tiff-%{version}-CVE-2013-1961.patch Patch5: tiff-%{version}-CVE-2013-1960.patch +# http://bugzilla.maptools.org/show_bug.cgi?id=2443 +Patch6: tiff-%{version}-double-free.patch +# http://bugzilla.maptools.org/show_bug.cgi?id=2442 +Patch7: tiff-%{version}-compress-warning.patch # FYI: this issue is solved another way # http://bugzilla.maptools.org/show_bug.cgi?id=1985#c1 # Patch9: tiff-%{version}-lzw-CVE-2009-2285.patch @@ -101,6 +105,8 @@ %patch3 %patch4 %patch5 +%patch6 +%patch7 -p1 %build %configure --disable-static --with-pic ++++++ tiff-4.0.3-compress-warning.patch ++++++ Index: tiff-4.0.3/tools/tiff2pdf.c =================================================================== --- tiff-4.0.3.orig/tools/tiff2pdf.c +++ tiff-4.0.3/tools/tiff2pdf.c @@ -1264,6 +1264,15 @@ void t2p_read_tiff_data(T2P* t2p, TIFF* return; } + if(t2p->tiff_compression != COMPRESSION_LZW && + t2p->tiff_compression != COMPRESSION_NONE){ + TIFFWarning( + TIFF2PDF_MODULE, + "%s is not compressed with LZW or NONE.\n" + "tiff2pdf result may be incorrect in that case.\n" + "Consider to use tiffcp(1) to change compress algorithm first.", + TIFFFileName(input) ); + } if( TIFFIsCODECConfigured(t2p->tiff_compression) == 0){ TIFFError( TIFF2PDF_MODULE, ++++++ tiff-4.0.3-double-free.patch ++++++ Index: tools/tiff2pdf.c =================================================================== --- tools/tiff2pdf.c.orig +++ tools/tiff2pdf.c @@ -2436,7 +2436,7 @@ tsize_t t2p_readwrite_pdf_image(T2P* t2p TIFFReadEncodedStrip(input, i, (tdata_t) &buffer[bufferoffset], - stripsize); + TIFFmin(stripsize, t2p->tiff_datasize - bufferoffset)); if(read==-1){ TIFFError(TIFF2PDF_MODULE, "Error on decoding strip %u of %s", -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org