[OE-core] [mickledore][PATCH] tiff: upgrade to 4.5.1

From: Ross Burton Also remove old CVE_CHECK_IGNOREs which are no longer needed due to CPE updates. This is a backport from master. Mickledore had one extra CVE patch that was not on master at the time of upgrade, so it had to be manually removed here. Signed-off-by: Ross Burton Signed-off-by:

[oe-core][mickledore][PATCH] tiff: backport a fix for CVE-2023-26965

Fixes a bug where a buffer was used after a potential reallocation. Signed-off-by: Natasha Bailey --- .../libtiff/files/CVE-2023-26965.patch| 100 ++ meta/recipes-multimedia/libtiff/tiff_4.5.0.bb | 1 + 2 files changed, 101 insertions(+) create mode 100644 meta/recipes

[OE-core][PATCH] tiff: backport a fix for CVE-2023-26965

Fixes a bug where a buffer was used after a potential reallocation. Signed-off-by: Natasha Bailey --- .../libtiff/files/CVE-2023-26965.patch| 99 +++ meta/recipes-multimedia/libtiff/tiff_4.5.0.bb | 1 + 2 files changed, 100 insertions(+) create mode 100644 meta/recipes-

[oe-core][mickledore][PATCH v2] tiff: backport a fix for CVE-2023-2731

From: Natasha Bailey This patch fixes an issue in libtiff's LZWDecode function which could cause a null pointer dereference. Signed-off-by: Natasha Bailey --- .../libtiff/files/CVE-2023-2731.patch | 40 +++ meta/recipes-multimedia/libtiff/tiff_4.5.0.bb | 4 +- 2 files

[oe-core][mickledore][PATCH] tiff: backport a fix for CVE-2023-2731

From: Natasha Bailey This patch fixes an issue in libtiff's LZWDecode function which could cause a null pointer dereference. Signed-off-by: Natasha Bailey --- .../libtiff/files/CVE-2023-2731.patch | 39 +++ meta/recipes-multimedia/libtiff/tiff_4.5.0.bb | 4 +- 2 files

[OE-core] [PATCH] tiff: backport a fix for CVE-2023-2731

From: Natasha Bailey This patch fixes an issue in libtiff's LZWDecode function which could cause a null pointer dereference. Signed-off-by: Natasha Bailey Signed-off-by: Randy MacLeod --- .../libtiff/files/CVE-2023-2731.patch | 39 +++ meta/recipes-multimedia/libtiff/