1<HTML> 2<HEAD> 3<TITLE> 4 Changes in TIFF v3.9.4 5</TITLE> 6</HEAD> 7 8<BODY BGCOLOR=white> 9<FONT FACE="Helvetica, Arial, Sans"> 10<FONT FACE="Helvetica, Arial, Sans"> 11 12<BASEFONT SIZE=4> 13<B><FONT SIZE=+3>T</FONT>IFF <FONT SIZE=+2>C</FONT>HANGE <FONT SIZE=+2>I</FONT>NFORMATION</B> 14<BASEFONT SIZE=3> 15 16<UL> 17<HR SIZE=4 WIDTH=65% ALIGN=left> 18<B>Current Version</B>: v3.9.4<BR> 19<B>Previous Version</B>: <A HREF=v3.9.3.html>v3.9.3</a><BR> 20<B>Master FTP Site</B>: <A HREF="ftp://download.osgeo.org/libtiff"> 21download.osgeo.org</a>, directory pub/libtiff</A><BR> 22<B>Master HTTP Site</B>: <A HREF="http://www.simplesystems.org/libtiff/"> 23http://www.simplesystems.org/libtiff/</a> 24<HR SIZE=4 WIDTH=65% ALIGN=left> 25</UL> 26 27<P> 28This document describes the changes made to the software between the 29<I>previous</I> and <I>current</I> versions (see above). If you don't 30find something listed here, then it was not done in this timeframe, or 31it was not considered important enough to be mentioned. The following 32information is located here: 33<UL> 34<LI><A HREF="#hightlights">Major Changes</A> 35<LI><A HREF="#configure">Changes in the software configuration</A> 36<LI><A HREF="#libtiff">Changes in libtiff</A> 37<LI><A HREF="#tools">Changes in the tools</A> 38<LI><A HREF="#contrib">Changes in the contrib area</A> 39</UL> 40<p> 41<P><HR WIDTH=65% ALIGN=left> 42 43<!---------------------------------------------------------------------------> 44 45<A NAME="highlights"><B><FONT SIZE=+3>M</FONT>AJOR CHANGES:</B></A> 46 47<UL> 48 49 <li> Complete the fixes for CVE-2009-2347. 50 51 <li> Tiffcrop now supports custom page sizes. 52 53</UL> 54 55 56<P><HR WIDTH=65% ALIGN=left> 57<!---------------------------------------------------------------------------> 58 59<A NAME="configure"><B><FONT SIZE=+3>C</FONT>HANGES IN THE SOFTWARE CONFIGURATION:</B></A> 60 61<UL> 62 63 <li> None. 64 65</UL> 66 67<P><HR WIDTH=65% ALIGN=left> 68 69<!---------------------------------------------------------------------------> 70 71<A NAME="libtiff"><B><FONT SIZE=+3>C</FONT>HANGES IN LIBTIFF:</B></A> 72 73<UL> 74 <li> Fixed inadequate validation of the SubjectDistance field. 75 76 <li> Fixed bad handling of out of order tags definated late by 77 a codec. 78 79 <li> Avoid re-preparing jpeg tables unnecessarily. 80 81</UL> 82 83<P><HR WIDTH=65% ALIGN=left> 84 85<!--------------------------------------------------------------------------> 86 87<A NAME="tools"><B><FONT SIZE=+3>C</FONT>HANGES IN THE TOOLS:</B></A> 88 89<UL> 90 91 <li> tiffcrop: Added an option to allow the user to specify a 92 custom page size on the command line. Fix the case where a 93 page size specified with a fractional part was being coerced 94 to an integer by retyping the variables that define the paper 95 size. Corrected European page size dimensions. 96 97 <li> tiff2rgba: Completed fixes for "CVE-2009-2347 libtiff: 98 integer overflows in various inter-color space conversion 99 tools". http://bugzilla.maptools.org/show_bug.cgi?id=2079 100 101 <li> tiff2pdf: Fix assorted bugs in tiff2pdf: missing "return" 102 in t2p_read_tiff_size() causes t2p->tiff_datasize to be set entirely 103 wrong for COMPRESSION_JPEG case, resulting in memory stomp if actual 104 size is larger. Also, there are a bunch of places that try to 105 memset() a malloc'd buffer before checking for malloc failure, which 106 would result in core dump if there actually were a failure. 107 108</UL> 109 110<P><HR WIDTH=65% ALIGN=left> 111 112<!---------------------------------------------------------------------------> 113 114<A NAME="contrib"><B><FONT SIZE=+3>C</FONT>HANGES IN THE CONTRIB AREA:</B></A> 115 116<UL> 117 118 <li> None 119 120</UL> 121 122Last updated $Date: 2016-09-25 20:05:47 $. 123 124</BODY> 125</HTML> 126