[Buildroot] [PATCH] tiff: security bump to version 4.0.4

Gustavo Zacarias gustavo at zacarias.com.ar
Mon Jun 22 19:16:19 UTC 2015


Fixes:
CVE-2014-8128 - Check memory allocations for failure. Also check
multiplication overflow.

Signed-off-by: Gustavo Zacarias <gustavo at zacarias.com.ar>
---
 package/tiff/tiff.hash | 2 +-
 package/tiff/tiff.mk   | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/package/tiff/tiff.hash b/package/tiff/tiff.hash
index 361b5e1..c594568 100644
--- a/package/tiff/tiff.hash
+++ b/package/tiff/tiff.hash
@@ -1,2 +1,2 @@
 # Locally computed
-sha256 ea1aebe282319537fb2d4d7805f478dd4e0e05c33d0928baba76a7c963684872	tiff-4.0.3.tar.gz
+sha256	8cb1d90c96f61cdfc0bcf036acc251c9dbe6320334da941c7a83cfe1576ef890	tiff-4.0.4.tar.gz
diff --git a/package/tiff/tiff.mk b/package/tiff/tiff.mk
index 6db2abd..548e47a 100644
--- a/package/tiff/tiff.mk
+++ b/package/tiff/tiff.mk
@@ -4,7 +4,7 @@
 #
 ################################################################################
 
-TIFF_VERSION = 4.0.3
+TIFF_VERSION = 4.0.4
 TIFF_SITE = http://download.osgeo.org/libtiff
 TIFF_LICENSE = tiff license
 TIFF_LICENSE_FILES = COPYRIGHT
-- 
2.3.6



More information about the buildroot mailing list