From mboxrd@z Thu Jan  1 00:00:00 1970
Delivery-date: Tue, 18 Mar 2025 09:47:02 +0100
Received: from metis.whiteo.stw.pengutronix.de ([2a0a:edc0:2:b01:1d::104])
	by lore.white.stw.pengutronix.de with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.96)
	(envelope-from <ptxdist-bounces+lore=lore.pengutronix.de@pengutronix.de>)
	id 1tuSbG-000y8r-1q
	for lore@lore.pengutronix.de;
	Tue, 18 Mar 2025 09:47:02 +0100
Received: from localhost ([127.0.0.1] helo=metis.whiteo.stw.pengutronix.de)
	by metis.whiteo.stw.pengutronix.de with esmtp (Exim 4.92)
	(envelope-from <ptxdist-bounces@pengutronix.de>)
	id 1tuSbF-0007bb-O2; Tue, 18 Mar 2025 09:47:01 +0100
To: <ptxdist@pengutronix.de>
Date: Tue, 18 Mar 2025 09:46:04 +0100
MIME-Version: 1.0
Message-ID: <mailman.2830.1742287615.466.ptxdist@pengutronix.de>
List-Id: PTXdist Development Mailing List <ptxdist.pengutronix.de>
List-Post: <mailto:ptxdist@pengutronix.de>
From: Roman Schnider via ptxdist <ptxdist@pengutronix.de>
Precedence: list
Cc: Roman Schnider <r.schnider@cab.de>
X-Mailman-Version: 2.1.29
X-BeenThere: ptxdist@pengutronix.de
List-Subscribe: <https://metis.pengutronix.de/mailman/listinfo/ptxdist>,
 <mailto:ptxdist-request@pengutronix.de?subject=subscribe>
List-Unsubscribe: <https://metis.pengutronix.de/mailman/options/ptxdist>,
 <mailto:ptxdist-request@pengutronix.de?subject=unsubscribe>
List-Archive: <https://metis.pengutronix.de/mailman/private/ptxdist/>
Reply-To: ptxdist@pengutronix.de
List-Help: <mailto:ptxdist-request@pengutronix.de?subject=help>
Subject: [ptxdist] [PATCH] libtiff: version bump 4.3.0 -> 4.7.0
Content-Type: message/rfc822
Content-Disposition: inline
Sender: "ptxdist" <ptxdist-bounces@pengutronix.de>
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de
X-SA-Exim-Scanned: No (on metis.whiteo.stw.pengutronix.de); SAEximRunCond expanded to false

Received: from mail.cab.de ([46.232.229.101])
	by metis.whiteo.stw.pengutronix.de with esmtps (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256)
	(Exim 4.92)
	(envelope-from <r.schnider@cab.de>)
	id 1tuSb7-0007b9-5r
	for ptxdist@pengutronix.de; Tue, 18 Mar 2025 09:46:54 +0100
DKIM-Filter: OpenDKIM Filter v2.11.0 mail.cab.de 4ZH5704yBZzMvqyM
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cab.de; s=default;
	t=1742287612; bh=c25Pjfe4nzI6ZRKnrckm7PzGL1QOem+iLnhvtN7PYCk=;
	h=From:To:CC:Subject:Date:From;
	b=lMEoNDhkaqZ5k3D8xlhU0IbU/3U83mGDo8VD8zZ3YAK1ikQqooEHVagikSuUL7oq1
	 7B2GpywCi45WGE/SW9cR3U+5y7rJiL8GZf3yRniH8ruNZzNRIjxSuKgeLVOVRib38n
	 HClEePpw3b7vVCq5if73Ex5/2rWstHMlQ1f43RJo=
X-cab-MailScanner-Watermark: 1742892411.34063@QFJN7eRjr4XLbHm59HjMJg
X-cab-MailScanner-From: r.schnider@cab.de
X-cab-MailScanner: Found to be clean
X-cab-MailScanner-ID: 4ZH56y3nFBzMvqyM
X-cab-MailScanner-Information: Please contact it@cab.de for more information
Received: from Adranos.cab.de ([10.10.1.54] [10.10.1.54])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(no client certificate requested)
	by hephaistos.cab.de (MailScanner Milter) with SMTP id 4ZH56y3nFBzMvqyM
	for <ptxdist@pengutronix.de>; Tue, 18 Mar 2025 09:46:50 +0100 (CET)
DKIM-Filter: OpenDKIM Filter v2.11.0 mail.cab.de 4ZH56y3nFBzMvqyM
Received: from KAN21-017.cab.de (10.10.3.134) by Adranos.cab.de (10.10.1.54)
 with Microsoft SMTP Server (version=TLS1_2,
 cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.2.1748.10; Tue, 18 Mar
 2025 09:46:58 +0100
From: Roman Schnider <r.schnider@cab.de>
To: <ptxdist@pengutronix.de>
CC: Roman Schnider <r.schnider@cab.de>
Date: Tue, 18 Mar 2025 09:46:04 +0100
Message-ID: <20250318084604.98906-1-r.schnider@cab.de>
X-Mailer: git-send-email 2.43.0
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Content-Type: text/plain
X-Originating-IP: [10.10.3.134]
X-ClientProxiedBy: Adranos.cab.de (10.10.1.54) To Adranos.cab.de (10.10.1.54)
X-SA-Exim-Connect-IP: 46.232.229.101
X-SA-Exim-Mail-From: r.schnider@cab.de
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on
	metis.whiteo.stw.pengutronix.de
X-Spam-Level: 
X-Spam-Status: No, score=-2.1 required=4.0 tests=BAYES_00,DKIM_SIGNED,
	DKIM_VALID,DKIM_VALID_AU,DKIM_VALID_EF,
	RCVD_IN_VALIDITY_CERTIFIED_BLOCKED,RCVD_IN_VALIDITY_RPBL_BLOCKED,
	SPF_HELO_PASS,SPF_PASS autolearn=ham autolearn_force=no version=3.4.2
Subject: [PATCH] libtiff: version bump 4.3.0 -> 4.7.0
X-SA-Exim-Version: 4.2.1 (built Wed, 08 May 2019 21:11:16 +0000)
X-SA-Exim-Scanned: Yes (on metis.whiteo.stw.pengutronix.de)
X-PTX-Original-Recipient: ptxdist@pengutronix.de

Bugfix releases addressing multiple CVEs:
https://libtiff.gitlab.io/libtiff/releases/v4.4.0.html
https://libtiff.gitlab.io/libtiff/releases/v4.5.0.html
https://libtiff.gitlab.io/libtiff/releases/v4.6.0.html
https://libtiff.gitlab.io/libtiff/releases/v4.7.0.html

Adapted configure options to new version

License file:
Was renamed from COPYRIGHT to LICENSE.md and changed copyright annotation

Plugs CVEs:
CVE-2022-3599, CVE-2022-34526, CVE-2022-3570, CVE-2022-3598,
CVE-2022-3627, CVE-2022-3597, CVE-2022-3626, CVE-2022-2056,
CVE-2022-2057, CVE-2022-2058, CVE-2023-52356, CVE-2024-7006

Signed-off-by: Roman Schnider <r.schnider@cab.de>
---
 rules/libtiff.make | 15 +++++++++++----
 1 file changed, 11 insertions(+), 4 deletions(-)

diff --git a/rules/libtiff.make b/rules/libtiff.make
index 1f515e040..14be848b8 100644
--- a/rules/libtiff.make
+++ b/rules/libtiff.make
@@ -14,15 +14,15 @@ PACKAGES-$(PTXCONF_LIBTIFF) += libtiff
 #
 # Paths and names
 #
-LIBTIFF_VERSION		:= 4.3.0
-LIBTIFF_MD5		:= 0a2e4744d1426a8fc8211c0cdbc3a1b3
+LIBTIFF_VERSION		:= 4.7.0
+LIBTIFF_MD5		:= 3a0fa4a270a4a192b08913f88d0cfbdd
 LIBTIFF			:= tiff-$(LIBTIFF_VERSION)
 LIBTIFF_SUFFIX		:= tar.gz
 LIBTIFF_URL		:= http://download.osgeo.org/libtiff/$(LIBTIFF).$(LIBTIFF_SUFFIX)
 LIBTIFF_SOURCE		:= $(SRCDIR)/$(LIBTIFF).$(LIBTIFF_SUFFIX)
 LIBTIFF_DIR		:= $(BUILDDIR)/$(LIBTIFF)
 LIBTIFF_LICENSE		:= libtiff
-LIBTIFF_LICENSE_FILES	:= file://COPYRIGHT;md5=34da3db46fab7501992f9615d7e158cf
+LIBTIFF_LICENSE_FILES	:= file://LICENSE.md;md5=a3e32d664d6db1386b4689c8121531c3
 
 # ----------------------------------------------------------------------------
 # Prepare
@@ -41,8 +41,13 @@ LIBTIFF_CONF_OPT	:= \
 	--enable-dependency-tracking \
 	--disable-ld-version-script \
 	--enable-libtool-lock \
+	--enable-deprecated \
 	--disable-rpath \
 	$(GLOBAL_LARGE_FILE_OPTION) \
+	--$(call ptx/endis, PTXCONF_LIBTIFF_TOOLS)-tools \
+	--disable-tests \
+	--disable-contrib \
+	--disable-docs \
 	--enable-ccitt \
 	--enable-packbits \
 	--enable-lzw \
@@ -62,12 +67,14 @@ LIBTIFF_CONF_OPT	:= \
 	--$(call ptx/endis, PTXCONF_LIBTIFF_WEBP)-webp \
 	--disable-jpeg12 \
 	--disable-cxx \
+	--disable-opengl \
 	--disable-win32-io \
 	--enable-strip-chopping \
 	--disable-defer-strile-load \
 	--disable-chunky-strip-read \
 	--enable-extrasample-as-alpha \
-	--enable-check-ycbcr-subsampling
+	--enable-check-ycbcr-subsampling \
+	--disable-sphinx
 
 # ----------------------------------------------------------------------------
 # Target-Install
-- 
2.43.0