evince: uninitialized memory use in function tiff_document_render() and tiff_document_get_thumbnail() (CVE-2019-11459)
The tiff_document_render() and tiff_document_get_thumbnail()
functions in the TIFF document backend in GNOME Evince through 3.32.0
did
not handle errors from TIFFReadRGBAImageOriented(), leading to
uninitialized memory use when processing certain TIFF image files.
Reference:
https://gitlab.gnome.org/GNOME/evince/issues/1129
Patch:
https://gitlab.gnome.org/GNOME/evince/commit/234f034a4d15cd46dd556f4945f99fbd57ef5f15
(from redmine: issue id 10621, created on 2019-06-25, closed on 2019-07-09)
- Relations:
- child #10622 (closed)
- child #10623 (closed)