BE-164-cve-2021-25289

Change release notes Update docs Add test image Merge in the changes to TiffDecode.c
2025-08-11 07:44:46 +03:00 · 2023-03-31 14:58:40 -04:00 · 2023-03-31 14:58:40 -04:00 · 99399058ff
commit 99399058ff
parent 3a855cb647
4 changed files with 660 additions and 628 deletions
--- a/CHANGES.rst
+++ b/CHANGES.rst
@ -2,12 +2,14 @@
 Changelog (Pillow)
 ==================
-6.2.2.5 (date TBD)
+6.2.2.5 (Date TBD)
 ------------------
- Fix CVE-2020-35654
+- Fix CVE CVE-2021-25289: An issue was discovered in Pillow before 8.1.1.
-[rickprice]
+  TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files
-
+  because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE:
  this issue exists because of an incomplete fix for CVE-2020-35654.
  [rickprice]
 6.2.2.4 (2023-03-29)
 ------------------
--- a/Tests/images/crash-2020-10-test.tif
+++ b/Tests/images/crash-2020-10-test.tif
--- a/docs/releasenotes/6.2.2.5.rst
+++ b/docs/releasenotes/6.2.2.5.rst
@ -1,4 +1,4 @@
-6.2.2.4
+6.2.2.5
 -------
 Security
@ -6,6 +6,8 @@ Security
 This release addresses several critical CVEs.
-:cve:`CVE-2020-35654`: In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode.
+:cve:`CVE-2021-25289`: An issue was discovered in Pillow before 8.1.1.
-
+TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files
 because of certain interpretation conflicts with LibTIFF in RGBA mode. NOTE:
 this issue exists because of an incomplete fix for CVE-2020-35654.
--- a/src/libImaging/TiffDecode.c
+++ b/src/libImaging/TiffDecode.c