desktop-packages team mailing list archive

Thread
Date

[Bug 1439186] Re: [REGRESSION] Predictor tag fails to be written correctly

To: desktop-packages@xxxxxxxxxxxxxxxxxxx
From: Launchpad Bug Tracker <1439186@xxxxxxxxxxxxxxxxxx>
Date: Thu, 02 Apr 2015 17:10:09 -0000
Reply-to: Bug 1439186 <1439186@xxxxxxxxxxxxxxxxxx>
Sender: bounces@xxxxxxxxxxxxx

This bug was fixed in the package tiff - 4.0.3-12.3ubuntu2

---------------
tiff (4.0.3-12.3ubuntu2) vivid; urgency=medium

  * SECURITY REGRESSION: regression when saving TIFF files with compression
    predictor (LP: #1439186)
    - debian/patches/CVE-2014-8128-5.patch: disable until proper upstream
      fix is available.
 -- Marc Deslauriers <marc.deslauriers@xxxxxxxxxx>   Wed, 01 Apr 2015 14:02:39 -0400

** Changed in: tiff (Ubuntu Vivid)
       Status: Confirmed => Fix Released

-- 
You received this bug notification because you are a member of Desktop
Packages, which is subscribed to tiff in Ubuntu.
https://bugs.launchpad.net/bugs/1439186

Title:
  [REGRESSION] Predictor tag fails to be written correctly

Status in tiff package in Ubuntu:
  Fix Released
Status in tiff source package in Lucid:
  Fix Released
Status in tiff source package in Precise:
  Fix Released
Status in tiff source package in Trusty:
  Fix Released
Status in tiff source package in Utopic:
  Fix Released
Status in tiff source package in Vivid:
  Fix Released

Bug description:
  The patch debian/patches/CVE-2014-8128-5.patch appears to break saving TIFF files with compression predictor.
  It seems the data is correctly saved, but the "predictor" tag is not, which prevents reading the data correctly again.

  This happens both on precise (release 3.9.5-2ubuntu1.7) and on trusty
  (release 4.0.3-7ubuntu0.2).

  I'm attaching an example TIFF file "small.tiff" for showing the
  behaviour. It is compressed in LZW without predictor, so it is
  written/read correctly.

  However, if you recompress it with this command, the error happens:
  $ tiffcp -c lzw:2 small.tiff small-c2.tiff

  Then displaying it in eog shows a completely different image. Tiffinfo indicates a problem with the tags:
  $ tiffinfo small-c2-bad.tiff | grep Predictor
  TIFFReadDirectory: Warning, small-c2-bad.tiff: unknown field with tag 8224 (0x2020) encountered.

  Comparing it with a good version of the file (generated with a previous version of libtiff):
  $ tiffinfo small-c2-good.tiff | grep Predictor
    Predictor: horizontal differencing 2 (0x2)

  $ tiffcmp small-c2.tiff small-c2-good.tiff 
  TIFFReadDirectory: Warning, small-c2-bad.tiff: unknown field with tag 8224 (0x2020) encountered.
  Predictor tag appears only in small-c2-good.tiff

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/tiff/+bug/1439186/+subscriptions

References

[Bug 1439186] [NEW] [REGRESSION] Predictor tag fails to be written correctly
From: Delmic, 2015-04-01