Bug 2657 - Heap based buffer overflow in tools/tiffcp
: Heap based buffer overflow in tools/tiffcp
Status: RESOLVED FIXED
: libtiff
default
: unspecified
: PC Linux
: P1 enhancement
: ---
Assigned To:
:
:
:
:
:
  Show dependency treegraph
 
Reported: 2017-01-09 00:07 by
Modified: 2017-01-11 14:27 (History)


Attachments
the bug report and poc (1.24 KB, application/zip)
2017-01-09 00:07, Li Yuekang
Details


Note

You need to log in before you can comment on or make changes to this bug.


Description From 2017-01-09 00:07:17
Created an attachment (id=743) [details]
the bug report and poc

This is a bug similar to Bug 2656.
(http://bugzilla.maptools.org/show_bug.cgi?id=2656)
------- Comment #1 From 2017-01-11 14:27:13 -------
Fixed per

2017-01-11 Even Rouault <even.rouault at spatialys.com>

        * tools/tiffcp.c: error out cleanly in cpContig2SeparateByRow and
        cpSeparate2ContigByRow if BitsPerSample != 8 to avoid heap based
overflow.
        Fixes http://bugzilla.maptools.org/show_bug.cgi?id=2656 and
        http://bugzilla.maptools.org/show_bug.cgi?id=2657


less C/cvs/maptools/cvsroot/libtiff/ChangeLog,v  <--  ChangeLog
new revision: 1.1210; previous revision: 1.1209
/cvs/maptools/cvsroot/libtiff/tools/tiffcp.c,v  <--  tools/tiffcp.c
new revision: 1.61; previous revision: 1.60