helium-3rd-party/poky
1
0
Fork 0
mirror of git://git.yoctoproject.org/poky synced 2026-04-02 02:49:11 +00:00
Code Issues Packages Projects Releases Wiki Activity

tiff: set status of CVE-2025-61145 as fixed by patch for CVE-2025-8961

Browse Source 
Gitlab issues for these two CVEs mentioned in NVD inks lead to the same
merge request.

(From OE-Core rev: 5c1ca090597aefa55f23ce714409137461dd7dab)

Signed-off-by: Peter Marko <peter.marko@siemens.com>
Signed-off-by: Fabien Thomas <fabien.thomas@smile.fr>
Signed-off-by: Yoann Congal <yoann.congal@smile.fr>
Signed-off-by: Paul Barker <paul@pbarker.dev>
This commit is contained in:
Peter Marko 2026-03-08 23:42:40 +01:00 committed by Paul Barker
parent 28f7821cc4
commit 53045adf7b
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
meta/recipes-multimedia/libtiff/tiff/CVE-2025-8961.patch
View File

@ -6,6 +6,7 @@ Subject: [PATCH] tiffcrop: fix double-free and memory leak exposed by issue
Upstream-Status: Backport [https://gitlab.com/libtiff/libtiff/-/commit/0ac97aa7a5bffddd88f7cdbe517264e9db3f5bd5]
CVE: CVE-2025-8961
CVE: CVE-2025-61145
Signed-off-by: Vijay Anusuri <vanusuri@mvista.com>
---
tools/tiffcrop.c | 8 +++++++-