tiff/tiff-4.0.3-CVE-2013-4243.patch

Index: gif2tiff.c
===================================================================
RCS file: /cvs/maptools/cvsroot/libtiff/tools/gif2tiff.c,v
retrieving revision 1.12
diff -u -r1.12 gif2tiff.c
--- tools/gif2tiff.c	15 Dec 2010 00:22:44 -0000	1.12
+++ tools/gif2tiff.c	14 Aug 2013 04:43:31 -0000
@@ -280,6 +280,10 @@
         fprintf(stderr, "no colormap present for image\n");
         return (0);
     }
+    if (width == 0 || height == 0) {
+        fprintf(stderr, "Invalid value of width or height\n");
+        return(0);
+    }
     if ((raster = (unsigned char*) _TIFFmalloc(width*height+EXTRAFUDGE)) == NULL) {
         fprintf(stderr, "not enough memory for image\n");
         return (0);
- security update * CVE-2013-4232.patch [bnc#834477] * CVE-2013-4231.patch [bnc#834477] * CVE-2013-4244.patch [bnc#834788] * CVE-2013-4243.patch [bnc#834779] OBS-URL: https://build.opensuse.org/package/show/graphics/tiff?expand=0&rev=60 2013-08-21 13:42:57 +00:00			`Index: gif2tiff.c`
			`===================================================================`
			`RCS file: /cvs/maptools/cvsroot/libtiff/tools/gif2tiff.c,v`
			`retrieving revision 1.12`
			`diff -u -r1.12 gif2tiff.c`
			`--- tools/gif2tiff.c 15 Dec 2010 00:22:44 -0000 1.12`
			`+++ tools/gif2tiff.c 14 Aug 2013 04:43:31 -0000`
			`@@ -280,6 +280,10 @@`
			`fprintf(stderr, "no colormap present for image\n");`
			`return (0);`
			`}`
			`+ if (width == 0 \|\| height == 0) {`
			`+ fprintf(stderr, "Invalid value of width or height\n");`
			`+ return(0);`
			`+ }`
			`if ((raster = (unsigned char) _TIFFmalloc(widthheight+EXTRAFUDGE)) == NULL) {`
			`fprintf(stderr, "not enough memory for image\n");`
			`return (0);`