| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2016-12-13 | libtiff: Update to 4.0.7 |   Armin Kuster | |
| Major changes: The libtiff tools bmp2tiff, gif2tiff, ras2tiff, sgi2tiff, sgisv, and ycbcr are completely removed from the distribution, used for demos. CVEs fixed: CVE-2016-9297 CVE-2016-9448 CVE-2016-9273 CVE-2014-8127 CVE-2016-3658 CVE-2016-5875 CVE-2016-5652 CVE-2016-3632 plus more that are not identified in the changelog. removed patches integrated into update. more info: http://libtiff.maptools.org/v4.0.7.html Signed-off-by: Armin Kuster <akuster808@gmail.com> Signed-off-by: Ross Burton <ross.burton@intel.com> | |||
| 2016-08-17 | tiff: Security fix CVE-2015-8784 |   Armin Kuster | |
| CVE-2015-8784 libtiff: out-of-bound write in NeXTDecode() External Reference: https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-8784 Signed-off-by: Armin Kuster <akuster@mvista.com> Signed-off-by: Yi Zhao <yi.zhao@windriver.com> Signed-off-by: Ross Burton <ross.burton@intel.com> | |||
 |
index : openembedded-core-contrib | |
| OpenEmbedded Core user contribution trees | Grokmirror user |
| summaryrefslogtreecommitdiffstats |