Hello community,
here is the log from the commit of package tiff
checked in at Tue Jun 6 12:58:28 CEST 2006.
--------
--- tiff/tiff.changes 2006-04-12 11:38:39.000000000 +0200
+++ tiff/tiff.changes 2006-06-02 17:30:45.000000000 +0200
@@ -1,0 +2,6 @@
+Fri Jun 2 17:17:55 CEST 2006 - nadvornik@suse.cz
+
+- fixed buffer overflow in tiffsplit (CVE-2006-2656) [#179051]
+- fixed buffer overflow in tiff2pdf [#179587]
+
+-------------------------------------------------------------------
New:
----
tiff-3.8.2-tiff2pdf.patch
tiff-3.8.2-tiffsplit-CVE-2006-2656.patch
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Other differences:
------------------
++++++ tiff.spec ++++++
--- /var/tmp/diff_new_pack.hy6Bup/_old 2006-06-06 12:58:18.000000000 +0200
+++ /var/tmp/diff_new_pack.hy6Bup/_new 2006-06-06 12:58:18.000000000 +0200
@@ -17,12 +17,14 @@
Autoreqprov: on
URL: http://www.remotesensing.org/libtiff/
Version: 3.8.2
-Release: 1
+Release: 5
Summary: Tools for Converting from and to the Tiff Format
Source: tiff-%{version}.tar.bz2
Source1: jpegint.h
Source2: README.SUSE
Patch2: tiff-%{version}-seek.patch
+Patch3: tiff-%{version}-tiff2pdf.patch
+Patch4: tiff-%{version}-tiffsplit-CVE-2006-2656.patch
BuildRoot: %{_tmppath}/%{name}-%{version}-build
%description
@@ -66,6 +68,8 @@
%prep
%setup -q
%patch2
+%patch3
+%patch4
cp %{S:1} libtiff
find -type d -name "CVS" | xargs rm -rfv
find -type d | xargs chmod 755
@@ -117,6 +121,9 @@
%doc %{_mandir}/man3/*
%changelog -n tiff
+* Fri Jun 02 2006 - nadvornik@suse.cz
+- fixed buffer overflow in tiffsplit (CVE-2006-2656) [#179051]
+- fixed buffer overflow in tiff2pdf [#179587]
* Wed Apr 12 2006 - nadvornik@suse.cz
- updated to 3.8.2 [#165237]
* bugfix release
++++++ tiff-3.8.2-tiff2pdf.patch ++++++
--- tools/tiff2pdf.c
+++ tools/tiff2pdf.c
@@ -3668,7 +3668,7 @@
written += TIFFWriteFile(output, (tdata_t) "(", 1);
for (i=0;i