[3.11] evince: uninitialized memory use in function tiff_document_render() and tiff_document_get_thumbnail() (CVE-2019-11459)
The tiff_document_render() and tiff_document_get_thumbnail()
functions in the TIFF document backend in GNOME Evince through 3.32.0
did
not handle errors from TIFFReadRGBAImageOriented(), leading to
uninitialized memory use when processing certain TIFF image files.
Reference:
https://gitlab.gnome.org/GNOME/evince/issues/1129
Patch:
https://gitlab.gnome.org/GNOME/evince/commit/234f034a4d15cd46dd556f4945f99fbd57ef5f15
(from redmine: issue id 10622, created on 2019-06-25, closed on 2019-07-09)
- Relations:
- parent #10621 (closed)
- Changesets:
- Revision 21b65c26 by Natanael Copa on 2019-07-08T12:20:43Z:
community/evince: fix CVE-2019-11459
remove unused patch
fixes #10622
To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information