27 lines
734 B
Plaintext
27 lines
734 B
Plaintext
From dd1bcc7abb26094e93636e85520f0d8f81ab0fab Mon Sep 17 00:00:00 2001
|
|
From: 4ugustus <wangdw.augustus@qq.com>
|
|
Date: Sat, 11 Jun 2022 09:31:43 +0000
|
|
Subject: [PATCH] fix the FPE in tiffcrop (#415, #427, and #428)
|
|
|
|
CVE-2022-2056 / CVE-2022-2057 / CVE-2022-2058
|
|
|
|
Index: libtiff/tif_aux.c
|
|
--- libtiff/tif_aux.c.orig
|
|
+++ libtiff/tif_aux.c
|
|
@@ -402,6 +402,15 @@ float _TIFFClampDoubleToFloat( double val )
|
|
return (float)val;
|
|
}
|
|
|
|
+uint32_t _TIFFClampDoubleToUInt32(double val)
|
|
+{
|
|
+ if( val < 0 )
|
|
+ return 0;
|
|
+ if( val > 0xFFFFFFFFU || val != val )
|
|
+ return 0xFFFFFFFFU;
|
|
+ return (uint32_t)val;
|
|
+}
|
|
+
|
|
int _TIFFSeekOK(TIFF* tif, toff_t off)
|
|
{
|
|
/* Huge offsets, especially -1 / UINT64_MAX, can cause issues */
|