./graphics/tiff, Library and tools for reading and writing TIFF data files

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 4.1.0, Package name: tiff-4.1.0, Maintainer: pkgsrc-users

This is software provides support for the Tag Image Format (TIFF).
Included is a library, libtiff, for reading and writing TIFF, a
collection of tools for doing simple manipulations of TIFF images, and
documentation on the library and tools. A random assortment of
TIFF-related software contributed by others is also included.

The library, along with associated tool programs, should handle most of
your needs for reading and writing files that follow the 5.0 or 6.0
TIFF spec. There is also considerable support for some of the more
esoteric portions of the 6.0 TIFF spec.

Required to run:
[graphics/jpeg] [graphics/jbigkit]

Required to build:

Package options: lzw

Master sites:

SHA1: 7a882f8d55fd0620cbf89c47994d2d1d3b975452
RMD160: 913703005630320efc075650d5d7776c73c065f9
Filesize: 2364.825 KB

Version history: (Expand)

CVS history: (Expand)

   2019-11-04 02:11:38 by Greg Troxel | Files touched by this commit (7) | Package removed
Log message:
graphics/tiff: Update to 4.1.0

Upstream changes are basically minor improvements and bugfixes.

Specifically upstream states that there are no ABI changes.

Multiple security bugs are fixed due to fuzzing; patches are dropped
because they were backported from upstream.
   2019-07-17 11:25:45 by Nia Alarie | Files touched by this commit (6) | Package updated
Log message:
tiff: Apply patches from upstream's git for the following CVEs:

CVE-2018-12900 - buffer-overflow
CVE-2018-17000 - denial-of-service
CVE-2018-19210 - null-pointer-dereference
CVE-2019-6128 - memory-leak

   2018-11-10 22:14:54 by Maya Rashish | Files touched by this commit (14) | Package removed
Log message:
tiff: update to 4.0.10

It has been a year since the previous release.  This is the first
release made from the Git repository at
https://gitlab.com/libtiff/libtiff using a collaborative process.

Since the previous release, a number of security issues have been
fixed, and some significant new features have been added.

This release adds support for Zstd and WebP compression algorithms.
In their own way, each of these compression algorithms is highly
complimentary to TIFF.

Zstd provides improved compression and decompression speed vs zlib's
Deflate as well as a broader range of compression ratios.  Zstd is
developed by Facebook and the implementation continues to be improved.

WebP is optimized for small/medium 8-bit images while offering
improved compression performance vs traditional JPEG.  WebP works well
in strips or tiles to compress large images down to very small files,
while preserving a good looking image.  WebP is developed by Google,
and its implementation continues to be improved.

Due to Adobe's TIFF tag registration interface going off-line, we have
had to assign our own tags for Zstd and WebP.
   2018-10-28 10:45:07 by S.P.Zeidler | Files touched by this commit (8)
Log message:
patches from upstream for
CVE-2017-11613 CVE-2017-18013 CVE-2018-5784 CVE-2018-10963
CVE-2018-17100 CVE-2018-17101
   2018-10-26 00:58:05 by Maya Rashish | Files touched by this commit (4) | Package updated
Log message:
tiff: apply fix for CVE-2018-18557

From 681748ec2f5ce88da5f9fa6831e1653e46af8a66 Mon Sep 17 00:00:00 2001
From: Even Rouault <even.rouault@spatialys.com>
Date: Sun, 14 Oct 2018 16:38:29 +0200
Subject: [PATCH 1/1] JBIG: fix potential out-of-bounds write in JBIGDecode()

JBIGDecode doesn't check if the user provided buffer is large enough
to store the JBIG decoded image, which can potentially cause out-of-bounds
write in the buffer.
This issue was reported and analyzed by Thomas Dullien.

Also fixes a (harmless) potential use of uninitialized memory when
tif->tif_rawsize > tif->tif_rawcc

And in case libtiff is compiled with CHUNKY_STRIP_READ_SUPPORT, make sure
that whole strip data is provided to JBIGDecode()

The last part (CHUNKY_STRIP_READ_SUPPORT) was adapted by myself to fit
the libtiff release.

   2018-06-22 01:11:04 by Tim Zingelman | Files touched by this commit (3)
Log message:
tiff: fix for CVE-2018-8905

from \ 
https://gitlab.com/libtiff/libtiff/comm … 80c242a27d
   2018-01-17 00:52:06 by Tim Zingelman | Files touched by this commit (3)
Log message:
tiff: add patch for CVE-2017-9935 from upstream git repo
   2017-12-03 10:07:06 by Maya Rashish | Files touched by this commit (3) | Package updated
Log message:
tiff: add my own patch for CVE-2017-17095.