X-Original-To: alpine-aports@lists.alpinelinux.org
Received: from mail-qk0-f172.google.com (mail-qk0-f172.google.com [209.85.220.172])
	by lists.alpinelinux.org (Postfix) with ESMTP id CC2785C5405
	for <alpine-aports@lists.alpinelinux.org>; Wed,  3 May 2017 17:41:22 +0000 (GMT)
Received: by mail-qk0-f172.google.com with SMTP id r189so21379988qkf.1
        for <alpine-aports@lists.alpinelinux.org>; Wed, 03 May 2017 10:41:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=20161025;
        h=from:to:subject:date:message-id:in-reply-to:references;
        bh=lzgGthi3QzviyWgKzM/Hx5AYyfbruJc3M9JvpVd7Hps=;
        b=Hvbf623ASLyZo7O7YNcjhqwdhMRlTOPrLai3zrGkjSkYVJXCu5mLsswb3yXnmZzxOv
         /RsCi5k97xlN1V89Z+TY/dj+5rqxkbKgwy9JY6vSUCSx4ospxQ5Wmcuk6JlpB0xJfiya
         fAxlN/jdzwaYUb9Lc5087Losmxu951gJgdibDBz2vx9ti/1s4haK4qqkCq/T+Xg89HlZ
         phwe4gEcuHmzcBh8tL/MOBj+Cco0ghCOZQmDUhX49EPjSt43DahCZt5ShgCsvU+FY6sq
         hmnVA+JjkCR15zgRc4MwgQLhn2UeSpE72C9VSlkORkPO/S5PPcz6WYjsj60xLHXOpVsB
         Kw4w==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:from:to:subject:date:message-id:in-reply-to
         :references;
        bh=lzgGthi3QzviyWgKzM/Hx5AYyfbruJc3M9JvpVd7Hps=;
        b=eSWa3qgN3MZoM2RFXxQIfh6xBssO1xnNotyJ/mDBW2a+nx+VG1nhFVINgLArWbEcZM
         apWOh0fA/cwXMzoB8boA54474XqfISEia+f5Oq0InVnl8yputk9YJJFpokbOB+wlSzxg
         79VJmeSSUcC9mUfkTtjn/cpmdOgCFYVHtMykNmBrLVSBUS0y4yzxJjBKcc/08FcUvNZY
         Dpzkpo9quyy9PYtoihsPwqPnR+UHKTLxm7bvJ9K+AIsyow61q016LDLXXmz64F7e8+wj
         VkJ6AApaT1XQG8F1658V67wG4afkSRQUSN4si1ISgbHqPNQ62avqKjyMLyc87blpAE23
         vRNA==
X-Gm-Message-State: AN3rC/4QHbJXRG6QBUJ+91iGl5k7rn0+v+dVQ8CQrAcyLn11pAopcWbJ
	Wi97J8GOLnmLtDrI
X-Received: by 10.55.155.16 with SMTP id d16mr4298846qke.174.1493833282401;
        Wed, 03 May 2017 10:41:22 -0700 (PDT)
Received: from alp.lan (c-71-60-35-21.hsd1.pa.comcast.net. [71.60.35.21])
        by smtp.googlemail.com with ESMTPSA id n14sm176890qtf.33.2017.05.03.10.41.21
        for <alpine-aports@lists.alpinelinux.org>
        (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
        Wed, 03 May 2017 10:41:21 -0700 (PDT)
From: Daniel Sabogal <dsabogalcc@gmail.com>
To: alpine-aports@lists.alpinelinux.org
Subject: [alpine-aports] [PATCH] main/tiff: improve CVE-2016-10268 patch
Date: Wed,  3 May 2017 13:41:31 -0400
Message-Id: <20170503174131.31939-3-dsabogalcc@gmail.com>
X-Mailer: git-send-email 2.12.2
In-Reply-To: <20170503174131.31939-1-dsabogalcc@gmail.com>
References: <20170503174131.31939-1-dsabogalcc@gmail.com>
X-Mailinglist: alpine-aports
Precedence: list
List-Id: Alpine Development <alpine-aports.lists.alpinelinux.org>
List-Unsubscribe: 
	<mailto:alpine-aports+unsubscribe@lists.alpinelinux.org?subject=unsubscribe>
List-Post: <mailto:alpine-aports@lists.alpinelinux.org>
List-Help: <mailto:alpine-aports+help@lists.alpinelinux.org?subject=help>
List-Subscribe: 
	<mailto:alpine-aports+subscribe@lists.alpinelinux.org?subject=subscribe>

Ignore changes made to the ChangeLog
---
 main/tiff/APKBUILD             |  2 +-
 main/tiff/CVE-2016-10268.patch | 20 +-------------------
 2 files changed, 2 insertions(+), 20 deletions(-)

diff --git a/main/tiff/APKBUILD b/main/tiff/APKBUILD
index 6f83689b14..ee9667c878 100644
--- a/main/tiff/APKBUILD
+++ b/main/tiff/APKBUILD
@@ -92,7 +92,7 @@ tools() {
 sha512sums="941357bdd5f947cdca41a1d31ae14b3fadc174ae5dce7b7981dbe58f61995f575ac2e97a7cc4fcc435184012017bec0920278263490464644f2cdfad9a6c5ddc  tiff-4.0.7.tar.gz
 5f7a86b6dc1c9bcf707a1fc9fc4b79cc0cfa457582d13f89cc5db1d59193db468ecc8fe976fe688ae7bb6cb451759420cd0a00d957b7c614dbe8fc762adc9734  CVE-2016-10266.patch
 fccbf981daedff8e4f3b610dc86823cdb0b2f1e08be345b775bd5c7ba89ef681b3cd4e04a97832753081e9df07db0a68a0a0a38cb4f538f260c475565c204f8b  CVE-2016-10267.patch
-57cd4f9aadaedac5f43d8085729ca5871a40c5bfc88fe01ec9db94162067fb9290ead0d5fba0fef1f6efc04fe2ec18a21703a314c0732be86ddfcca5275803c1  CVE-2016-10268.patch
+ed173f71e159a9bb22c602d067e455843e10484173aabdc085ee718afd404f4b58f77373a3526c16ac7c91395bbb277218b7a8ca840db4e3482d715661987236  CVE-2016-10268.patch
 3a807132bf751b9e3c0e5a014b6cd9c9b98f79581b2d70167af3e29797a204fe2977349052042757f9bc634faa1afbec01462a947c739fb1ee9b7249341e4879  CVE-2016-10269.patch
 1db4890259028c1c29c15137e743e376e1044475b1a3bbdeb946a1b54708a85422217228aed5f5c8ddf2cf156ec75264b430d1d3aa3539b805809d69522f84b5  CVE-2016-10270.patch
 001a2df978f51025771c243edee2d033c91114bdd5318a05730b910add9c70f219a848faad899f27421ca18da6ce9972013aa3ecf689cf4ea37ac5409b4b6244  CVE-2017-5225.patch
diff --git a/main/tiff/CVE-2016-10268.patch b/main/tiff/CVE-2016-10268.patch
index ce5f9be7a2..73e4552a77 100644
--- a/main/tiff/CVE-2016-10268.patch
+++ b/main/tiff/CVE-2016-10268.patch
@@ -7,27 +7,9 @@ Subject: [PATCH] * tools/tiffcp.c: avoid uint32 underflow in cpDecodedStrips
  http://bugzilla.maptools.org/show_bug.cgi?id=2598
 
 ---
- ChangeLog      | 7 +++++++
  tools/tiffcp.c | 2 +-
- 2 files changed, 8 insertions(+), 1 deletion(-)
+ 1 file changed, 1 insertion(+), 1 deletion(-)
 
-diff --git a/ChangeLog b/ChangeLog
-index 668b66a..0f154d6 100644
---- a/ChangeLog
-+++ b/ChangeLog
-@@ -1,5 +1,12 @@
- 2016-12-02 Even Rouault <even.rouault at spatialys.com>
- 
-+	* tools/tiffcp.c: avoid uint32 underflow in cpDecodedStrips that 
-+	can cause various issues, such as buffer overflows in the library.
-+	Reported by Agostino Sarubbo.
-+	Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2598
-+
-+2016-12-02 Even Rouault <even.rouault at spatialys.com>
-+
- 	* libtiff/tif_read.c, libtiff/tiffiop.h: fix uint32 overflow in
- 	TIFFReadEncodedStrip() that caused an integer division by zero.
- 	Reported by Agostino Sarubbo.
 diff --git a/tools/tiffcp.c b/tools/tiffcp.c
 index a99c906..f294ed1 100644
 --- a/tools/tiffcp.c
-- 
2.12.2



---
Unsubscribe:  alpine-aports+unsubscribe@lists.alpinelinux.org
Help:         alpine-aports+help@lists.alpinelinux.org
---