Hi Brian,
> I attempted to fix CVE-2018-7456 issue in tiff, for the version in
> stretch. My patch is below. But curiously my patch only works if I
> enable the commented out call to fprintf or use -O0 instead of the
> default -O2 (-O1 also fails). Otherwise the if condition never gets
> executed,
Hi,
FYI, I've moved the debian-security-support repo to Salsa:
https://salsa.debian.org/debian/debian-security-support
Cheers,
Santiago
signature.asc
Description: PGP signature
Hi Santiago,
> FYI, I've moved the debian-security-support repo to Salsa:
> https://salsa.debian.org/debian/debian-security-support
Thanks! I've updated the bin/unsupported_packages.py script to match:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/b0cd5ed5b282af6bd773
Hi Brian,
I've had a look at your patch, here are some comments.
> I attempted to fix CVE-2018-7456 issue in tiff, for the version in
> stretch. My patch is below. But curiously my patch only works if I
> enable the commented out call to fprintf or use -O0 instead of the
> default -O2 (-O1 also f
On Thu, 2018-03-15 at 16:55 +0100, Hugo Lefeuvre wrote:
[...]
> * My understanding of the problem:
>
> Under certain conditions, the td->td_transferfunction table might not
> have the excepted size, that is it may not have the excepted number of
> samples per pixel (td->td_samplesperpixel). In thi
Hi,
Last month I only managed to work 2 hours on LTS for lack of time due to
personal reasons. I spent that time on:
- tzdata update
- libdatetime-timezone-perl update
- openjdk-7 upstream status investigation, filed Debian bug
I am returning all my unused hours to the pool.
Cheers,
Emilio
Hugo Lefeuvre writes:
> Under certain conditions, the td->td_transferfunction table might not
> have the excepted size, that is it may not have the excepted number of
> samples per pixel (td->td_samplesperpixel). In this case for example,
> the table is only 3 rows large while td->td_samplesperpi
