Path to this page:
./
graphics/tiff,
Library and tools for reading and writing TIFF data files
Branch: pkgsrc-2010Q2,
Version: 3.9.4nb1,
Package name: tiff-3.9.4nb1,
Maintainer: pkgsrc-usersThis is software provides support for the Tag Image Format (TIFF).
Included is a library, libtiff, for reading and writing TIFF, a
collection of tools for doing simple manipulations of TIFF images, and
documentation on the library and tools. A random assortment of
TIFF-related software contributed by others is also included.
The library, along with associated tool programs, should handle most of
your needs for reading and writing files that follow the 5.0 or 6.0
TIFF spec. There is also considerable support for some of the more
esoteric portions of the 6.0 TIFF spec.
Required to run:[
graphics/jpeg]
Required to build:[
devel/libtool-base]
Package options: lzw
Master sites: (Expand)
SHA1: a4e32d55afbbcabd0391a9c89995e8e8a19961de
RMD160: 3e0a74b6294297c16fb983ad68056a1dfbbdb1de
Filesize: 1403.289 KB
Version history: (Expand)
- (2010-08-05) Updated to version: tiff-3.9.4nb1
- (2010-07-05) Package added to pkgsrc.se, version tiff-3.9.4 (created)
CVS history: (Expand)
2010-08-04 23:23:39 by S.P.Zeidler | Files touched by this commit (7) |
Log message:
Pullup ticket 3197 - requested by tron
security patches
Revisions pulled up:
- pkgsrc/graphics/tiff/Makefile 1.97
- pkgsrc/graphics/tiff/distinfo 1.49
Files added:
pkgsrc/graphics/tiff/patches/patch-aa
pkgsrc/graphics/tiff/patches/patch-ab
pkgsrc/graphics/tiff/patches/patch-ac
pkgsrc/graphics/tiff/patches/patch-ad
pkgsrc/graphics/tiff/patches/patch-ae
-------------------------------------------------------------------------
Module Name: pkgsrc
Committed By: tron
Date: Wed Aug 4 17:48:22 UTC 2010
Modified Files:
pkgsrc/graphics/tiff: Makefile distinfo
Added Files:
pkgsrc/graphics/tiff/patches: patch-aa patch-ab patch-ac patch-ad
patch-ae
Log message:
Add patches from either libtiff's or Red Hat's Bugzilla which fix the
following vulnerabilities:
- CVE-2010-2233
- CVE-2010-2482
- CVE-2010-2483
- CVE-2010-2595
- CVE-2010-2597
There is no patch for CVE-2010-2596 yet. But it is low risk (an assertion
gets triggered) and cannot be exploited after the above vulnerabilities
are fixed (at least if I understood correctly).
No butcher was involved in fixing this package.
To generate a diff of this commit:
cvs rdiff -u -r1.96 -r1.97 pkgsrc/graphics/tiff/Makefile
cvs rdiff -u -r1.48 -r1.49 pkgsrc/graphics/tiff/distinfo
cvs rdiff -u -r0 -r1.19 pkgsrc/graphics/tiff/patches/patch-aa
cvs rdiff -u -r0 -r1.20 pkgsrc/graphics/tiff/patches/patch-ab
cvs rdiff -u -r0 -r1.22 pkgsrc/graphics/tiff/patches/patch-ac
cvs rdiff -u -r0 -r1.16 pkgsrc/graphics/tiff/patches/patch-ad
cvs rdiff -u -r0 -r1.11 pkgsrc/graphics/tiff/patches/patch-ae
|