Add CVE-2016-3623 for libtiff

author: Nguyễn Gia Phong <cnx@loang.net> 2025-04-08 14:26:55 +0900
committer: Nguyễn Gia Phong <cnx@loang.net> 2025-04-08 14:26:55 +0900
commit: a785a99fa9f8470b01717f568a96cc966a3855e3 (patch)
tree: 457bdabfeb680361dc2903eb553f1fe980a310d1
parent: bb91c0468597713faf49ee8f06ab460935190c9e (diff)
download: loftix-a785a99fa9f8470b01717f568a96cc966a3855e3.tar.gz
1 files changed, 9 insertions, 0 deletions
diff --git a/bugs/README.md b/bugs/README.md
index 3de0a45..f0011f1 100644
--- a/bugs/README.md
+++ b/bugs/README.md
@@ -143,6 +143,14 @@
       guix shell -e '(@@ (loftix bugs) libtiff-4.0.6)'
       echo y | gif2tiff cve/2016/3186/crash.gif /dev/null
 
+- CVE-2016-3186: [division by zero][maptools-2569]
+
+      guix shell -e '(@@ (loftix bugs) libtiff-4.0.6)'
+      tar xvf $(guix build -S libtiff@4.0.6)\
+        tiff-4.0.6/test/images/logluv-3c-16b.tiff
+      rgb2ycbcr -h 0 tiff-4.0.6/test/images/logluv-3c-16b.tiff /dev/null
+      rgb2ycbcr -v 0 tiff-4.0.6/test/images/logluv-3c-16b.tiff /dev/null
+
 - CVE-2016-5314: [heap buffer overflow][maptools-2554]
 
       guix shell -e '(@@ (loftix bugs) libtiff-4.0.6-asan)'
@@ -278,6 +286,7 @@
 [maptools-2489]: http://bugzilla.maptools.org/show_bug.cgi?id=2489
 [maptools-2554]: http://bugzilla.maptools.org/show_bug.cgi?id=2554
 [maptools-2558]: http://bugzilla.maptools.org/show_bug.cgi?id=2558
+[maptools-2569]: http://bugzilla.maptools.org/show_bug.cgi?id=2569
 [maptools-2587]: http://bugzilla.maptools.org/show_bug.cgi?id=2587
 [maptools-2592]: http://bugzilla.maptools.org/show_bug.cgi?id=2592
 [maptools-2596]: http://bugzilla.maptools.org/show_bug.cgi?id=2596
author	Nguyễn Gia Phong <cnx@loang.net>	2025-04-08 14:26:55 +0900
committer	Nguyễn Gia Phong <cnx@loang.net>	2025-04-08 14:26:55 +0900
commit	a785a99fa9f8470b01717f568a96cc966a3855e3 (patch)
tree	457bdabfeb680361dc2903eb553f1fe980a310d1
parent	bb91c0468597713faf49ee8f06ab460935190c9e (diff)
download	loftix-a785a99fa9f8470b01717f568a96cc966a3855e3.tar.gz