libtiff: fix CVE-2013-4244 - openembedded-core

diff options

author	Baogen Shang <baogen.shang@windriver.com>	2014-03-28 17:43:36 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-03-28 11:01:05 +0000
commit	4eec8fae3f972a27bfb986066f5b3603599ebc25 (patch)
tree	75b2306a76989e57f6d4fb4d38833446a23778d8 /meta/recipes-support/nss
parent	355a8086637b859a469e1f2dc717b4ccec00b970 (diff)
download	openembedded-core-4eec8fae3f972a27bfb986066f5b3603599ebc25.tar.gz

libtiff: fix CVE-2013-4244

cve description: The LZW decompressor in the gif2tiff tool in libtiff 4.0.3 and earlier allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) or possibly execute arbitrary code via a crafted GIF image. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4244 Signed-off-by: Baogen Shang <baogen.shang@windriver.com> Signed-off-by: Hongxu Jia <hongxu.jia@windriver.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-support/nss')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: