1Name: LibTIFF 2URL: http://www.remotesensing.org/libtiff/ 3Version: 4.0.6 4Security Critical: yes 5License: BSD 6 7Description: 8TIFF library. 9 10Local Modifications: 11 120000-build-config.patch: Local build configuration changes. 130001-build-config.patch: Enable HAVE_SEARCH_H in tiffconf.h for VS 2015 140002-CVE-2015-8665-8683.patch: Security fixes 150003-CVE-2015-8781-8782-8783.patch: Security fixes 160004-CVE-2015-8784.patch: Security fixes 170005-Leak-TIFFFetchStripThing.patch: Fix a memory leak 180006-HeapBufferOverflow-ChopUpSingleUncompressedStrip.patch: Fix a heap buffer overflow 190007-uninitialized-value.patch: Fix potentially uninitialized dircount value 200008-HeapBufferOverflow-ChopUpSingleUncompressedStrip.patch: Fix a heap buffer overflow 210009-HeapBufferOverflow-PixarLogDecode.patch: Fix a heap buffer overflow 220010-fix-leak-imagebegin: Fix a leak when TIFFRGBAImageBegin fails 230011-fix-leak-imagebegin2: Apply upstream fix related to our previous patch 240012-initialize-tif-rawdata.patch: Initialize tif_rawdata to guard against unitialized access 250013-validate-refblackwhite.patch: Make sure the refblackwhite values aren't nan. 260014-cast-to-unsigned-in-putagreytile.patch: casting to avoid undefined shifts. 270015-fix-leaks-in-tif_ojpeg.patch: fix direct leaks in tif_ojpeg.c methods 280016-fix-leak-in-pixarlogsetupdecode.patch: Free sp->tbuf if setup fails 290017-safe_skews_in_gtTileContig.patch: return error if to/from skews overflow from int32. 300018-fix-leak-in-PredictorSetupDecode.patch: call tif->tif_cleanup if the setup fails. 310019-fix-invalid-reads-TIFFFetchNormalTag.patch: upstream security fix in tif_dirread. 320020-unreasonable-td-bitspersample.patch: upstream patch ignoring large td_bitspersample. 330021-fix-leaks-ojpegreaderinfosectables.patch: more direct leak fixes in tif_ojpeg.c. 34