AWARE [SYSTEMS] Imaging expertise for the Delphi developer
AWare Systems, Imaging expertise for the Delphi developer, Home TIFF and LibTiff Mailing List Archive

LibTiff Mailing List

TIFF and LibTiff Mailing List Archive
August 2009

Previous Thread
Next Thread

Previous by Thread
Next by Thread

Previous by Date
Next by Date

Contact

The TIFF Mailing List Homepage
This list is run by Frank Warmerdam
Archive maintained by AWare Systems



Valid HTML 4.01!



Thread

2009.08.21 16:19 "Re: libtiff 4.0.0beta3", by Jay Berkenbilt
2009.08.21 16:37 "Re: libtiff 4.0.0beta3", by Frank Warmerdam
2009.08.21 17:10 "Re: libtiff 4.0.0beta3", by Bob Friesenhahn
2009.08.23 16:20 "Re: libtiff 4.0.0beta3", by Jay Berkenbilt
2009.08.24 17:25 "Re: libtiff 4.0.0beta3", by Bob Friesenhahn
2009.08.24 18:46 "Re: libtiff 4.0.0beta3", by Jay Berkenbilt
2009.08.24 19:33 "Re: libtiff 4.0.0beta3", by Bob Friesenhahn

2009.08.24 17:25 "Re: libtiff 4.0.0beta3", by Bob Friesenhahn

On Sun, 23 Aug 2009, Jay Berkenbilt wrote:

> It would be helpful if bug reports in bugzilla as well as CVS commit
> comments contained CVE numbers for security-related patches.  It would
> make it much easier to verify that security fixes have been committed or
> at least acknowledged.  But I did a careful analysis of this just a few
> days ago while preparing debian packages for 3.9.0 and 4.0.0 beta 3.
>
> Executive summary: bugs 1895, 2024, and 2079 have not been applied to
> the trunk.  They are all relatively simple.

Please double-check CVS HEAD to make sure that it is to your 
satisfaction.  I have now applied fixes for the bug IDs you mentioned. 
The libtiff test suite ('make check') was mostly re-written yesterday.

I ran valgrind on all of the tests and was disappointed to not uncover 
anything which needs fixing.

Bob
--
Bob Friesenhahn
bfriesen@simple.dallas.tx.us, http://www.simplesystems.org/users/bfriesen/
GraphicsMagick Maintainer,    http://www.GraphicsMagick.org/