Patchwork tiff: security bump to version 4.0.3

login
register
mail settings
Submitter Gustavo Zacarias
Date Sept. 25, 2012, 12:49 p.m.
Message ID <1348577342-8759-1-git-send-email-gustavo@zacarias.com.ar>
Download mbox | patch
Permalink /patch/186798/
State Accepted
Commit 36833f0c37c4939ace27af89e4c7bb71c99fbcfd
Headers show

Comments

Gustavo Zacarias - Sept. 25, 2012, 12:49 p.m.
Fixes CVE-2012-3401 and CVE-2012-3386.

Signed-off-by: Gustavo Zacarias <gustavo@zacarias.com.ar>
---
 package/tiff/tiff.mk |    6 +++---
 1 files changed, 3 insertions(+), 3 deletions(-)
Peter Korsgaard - Sept. 25, 2012, 6:29 p.m.
>>>>> "Gustavo" == Gustavo Zacarias <gustavo@zacarias.com.ar> writes:

 Gustavo> Fixes CVE-2012-3401 and CVE-2012-3386.

Committed, thanks.

Patch

diff --git a/package/tiff/tiff.mk b/package/tiff/tiff.mk
index 227047b..145d929 100644
--- a/package/tiff/tiff.mk
+++ b/package/tiff/tiff.mk
@@ -3,9 +3,9 @@ 
 # tiff
 #
 #############################################################
-TIFF_VERSION = 4.0.1
-TIFF_SITE = ftp://ftp.remotesensing.org/pub/libtiff
-TIFF_SOURCE = tiff-$(TIFF_VERSION).tar.gz
+
+TIFF_VERSION = 4.0.3
+TIFF_SITE = http://download.osgeo.org/libtiff
 TIFF_INSTALL_STAGING = YES
 TIFF_CONF_OPT = \
 	--disable-cxx \