Bug 75423 - media-libs/tiff: tiffdump crash on test image
Bug#: 75423 Product:  Gentoo Security Version: unspecified Platform: All
OS/Version: All Status: RESOLVED Severity: normal Priority: P2
Resolution: FIXED Assigned To: security@gentoo.org Reported By: koon@gentoo.org
Component: Vulnerabilities
URL: 
Summary: media-libs/tiff: tiffdump crash on test image
Keywords:  
Status Whiteboard: B2 [upstream] koon CLASSIFIED
Opened: 2004-12-23 02:47 0000
Description:   Opened: 2004-12-23 02:47 0000 
This is a restricted bug.

Test image from ftp://ftp.altlinux.org/pvt/people/ldv/1x1.tiff crashes tiffdump, not sure if it's exploitable, but should be fixed together with bug 75213.

We're waiting for a final patch from v-s.

------- Comment #1 From Thierry Carrez (RETIRED) 2004-12-23 02:52:29 0000 ------- 
Created an attachment (id=46702) [details]
Patch for tiffdump issue

Here is the proposed patch (from Dmitry Levin).

nerdboy: It's not public yet so you shouldn't include it in portage, but you're
allowed to privately test it :)

------- Comment #2 From Thierry Carrez (RETIRED) 2005-01-02 14:08:46 0000 ------- 
The tiffdump patch can now be included, please bump to -r2 with this additional
patch.

------- Comment #3 From Steve Arnold 2005-01-02 18:12:35 0000 ------- 
Both this patch and the transparency patch are in -r1.

------- Comment #4 From Steve Arnold 2005-01-02 18:21:58 0000 ------- 
Sorry, closing...