From e7a2ab62b76b399d38f64d0bc6dd3875ff112444 Mon Sep 17 00:00:00 2001
From: Frederick Price <fprice@pricemail.ca>
Date: Mon, 10 Apr 2023 17:37:01 -0400
Subject: [PATCH] BE-164-cve-2021-25289_B

Add binary files that are needed for testing. The code changes that
fixed the CVE were made in an earlier release. This just adds the files
that show the CVE has been fixed.

commit cbfdde7b1f2295059a20a539ee9960f0bec7b299
Author: Eric Soroos eric-github@soroos.net
Date:   Sun Jan 3 21:35:32 2021 +0100
Incorrect error code checking in TiffDecode.c

* since Pillow 8.1.0
* CVE-2021-25289
---
 CHANGES.rst                                      |   3 +++
 ...-0e16d3bfb83be87356d026d66919deaefca44dac.tif | Bin 0 -> 4567 bytes
 ...-1152ec2d1a1a71395b6f2ce6721c38924d025bf3.tif | Bin 0 -> 4221 bytes
 docs/releasenotes/6.2.2.5.rst                    |   3 ++-
 4 files changed, 5 insertions(+), 1 deletion(-)
 create mode 100644 Tests/images/crash-0e16d3bfb83be87356d026d66919deaefca44dac.tif
 create mode 100644 Tests/images/crash-1152ec2d1a1a71395b6f2ce6721c38924d025bf3.tif

diff --git a/CHANGES.rst b/CHANGES.rst
index 07b533488..6bb23e5f7 100644
--- a/CHANGES.rst
+++ b/CHANGES.rst
@@ -8,6 +8,9 @@ Changelog (Pillow)
 - Fix CVE-2020-35654
 [rickprice]
 
+- Catch TiffDecode heap-based buffer overflow. CVE 2021-25289
+  Add test files that show the CVE was fixed
+  [rickprice]
 
 6.2.2.4 (2023-03-29)
 ------------------
diff --git a/Tests/images/crash-0e16d3bfb83be87356d026d66919deaefca44dac.tif b/Tests/images/crash-0e16d3bfb83be87356d026d66919deaefca44dac.tif
new file mode 100644
index 0000000000000000000000000000000000000000..f59aab21afe39d2926aad3eeb896b7d147d510f5
GIT binary patch
literal 4567
zcmdUxdmz-=+rW>zTD#UIm(rTmP{e461}(o*ZWW=DY{Zz{XU5DhicCpHHVJ7`Aqf>F
zxkY873#~#*iY}&9#D-iNV`jeZ`C`lad*9vd{r&fz;hfKT&hwn-a?TkX9Swjy0N_Ue
zB&2`@BtzIq%rFnmB_T_}u^IkK&B)~-%g(SYWF-mdsa-}P&zq5>Hfl4Bfvi5G^BA($
zj2!jn4jI)|g%d9cIbbabfD>e8Nhtsk#v}n$C1n8WXFinE*>b=^0f0nkwD+te*bc{5
zMYsr?{M4t%004u<0N|GZprQxBHXQ&ae+D3U0RTl%+eigQYz=@F34qXK09a)JJZlHw
z@n-<6RZxHE2W@DN%#3^gVU9dSx_~V#-9I+8dT9GoQSxh(`qI$N{#1aYq$K?LviPll
z+y>gvkIeK&(_Z0RQc7AzR!)A--0z@5#gFI_OG!#g$;e1c!__@-9Y`z5DF2LKC9C4<
zE2k5#YO*giSANmz(z<zW4~MX(ezdqbbJf%}H0SH;EncE;u-wdi1;N77cFkHldk04+
z_f4C(cx?6DM)W7`3<wMgrZXZUnNhoT?~gx_z)n1vl$L%p;~3|7=7}?TXY&gR&z-+;
zrL4T7vg&GeP5rIgckVVc-uu1n(c|_f9Z#Qi@?O8`dHe2tZ{LUEPa~sa<DdBx0yHlP
zcpLw0)0zESUP>@8Noi>*X*o162}vfJxRSKY&v;qoRjzWr;VL>N`{Y$ur{<Q{%~@pX
zHZ;$V_HeEmb~#UX7)@;|vu{f*?mx=xOJZO1dIo@k!}=gHMG`*9FfxPYX1^K(D~XY7
zhL2$md<1v^e2H}G26wwnXx5HvZ83DH^yk@5kK<3KFYqHHhm9D_e_#8@nG%soW59c`
z5o((Hljuaq@sLBA3@R!gf~@Kng0dvMFF=(B1B9%Ba=<hjPU%eZzfkrMBl|-gG-j%Q
zm_N$5Aty#gkRVH~N8edOWDto7Cy(I*HZ&qE2r?fv4kP)}0g#4|9$*<HVj$#YkQHc~
z+-xDQgb!aKU>5t$Vg@M+1`2>Jg}RFt6cEV3EFtP+@D>&Xj01@oN@6gKHu@4nd};m|
zTS^$!m%Iyr>7-FBpo|t51FLL~w=g$1GQq+6e`$Za_(kjQ0X^JljS<(WLz7Uu|5f(Y
z_N$C?1^~hstj&?HGQUg!sty34(fL(|Jq>_jJOGs~v+_|xFH9hVLA5kCW-^($AQBOW
z7W7N|M};q%e+{$z;ZT2HYKK`v+UXk+%D|vSB~n5u5i|^)>PsYHjQ;%=|Hp>2!kQI_
zp&Mx@iAEwrS6kpM3nB-=<0ktDF@h*$Oc436PWT(m0-w~X1y#-0I<dVn<IHybYgcPF
z;hjF&swsH54ZOl)<J1>}j?o_iGT(ZVu)R;>>UE=yjW;j|;iohYK3J$p;(I!=O*|aC
zhOCQ4*<x*>gD5}NbaBJN)dN1gmXTcMX}*2^iYt~CwVA=MEygs9@408K$?8h9!ARD6
z#N#!7(0eefnZd|d;&Lp<q~c6XiFXNIK)F?%W7MsXRImu2tFiNVqM7WQ;?3n12q?;F
zEvz3*K)}<QgiP$q1*HcVClkrZ<(4t}!EKkGP>GwicV~b1<DL+K*LU6-S_ZkR&$xzP
zDHC!VhfEJqo@9A8slL_Mt6=UHd$W5};>)veFMFf<x3cZxhK*#(w<K&W9xy6Cil@`1
z4-v0kBXv7$B348Z27WE5Ep#fr(Ge{w8s89{*Au($_{I|v%Z{pc(r&a}<EFn@)L3g2
zvxDza5Zq~VFm?f->%<Rwovi%qOwQJ}itkf{J>>6q;6qM?-tG$C!i?%NtCn8&)`8IA
zEPKqdQblQh3$^VI?}F2?v-PO)8OFN`=U=p6<u?zc$CnwBw6-V`Znod;UV3lxk~y`u
zS^1^O;SWA~C#>0g`^mr<Lq5BJ@8wcGyd^WA-}P(i=-G!QZg19$pSJ%&)C(AzxVC0p
z|I*vGSVGuaXMCzp_Is^g+?U*L&c-D>w9(2JQz9LOD?%J<ldVEZ`J8#wOJVh%mBvf&
z#D2=Kh%Vcb7QVY7^Wq|0n$H7z@47*abBEV>YmmQBPd*!-QePcJ8j8<b8e#23KX05=
zz;0pvxN_5(PNp&`iEI0+w1M7Gv772-a4&F2thX?Le<-x4Iv^)-`?G&V4UQ;14!Amc
zuE<Tv>jP027p8WjCCP?I4&ruBOl};p{>-`h$H>b2<gUJKaYo%(r*&HgZp^4vOk#ws
z*g8zK*SUGDX3v51QJ7?~RmU|QdwjCZVHb8J-KWlCr>`BsdUw0Zx$;M(zNaD=cKDH7
ztx4%+W@-4~3no3LMAi#Ux9_OY!`oGItO|9<E3Mxsde7rMP(R(Y!K<ac(?Zwp@)8Bl
zhJ}q?r<RDqJq^@poX+ZpTJG+yl(nDLVm4pArItn2F}S*KZ>PN#``7n_^FP+}I@e`J
zUlbSONQW!traB9>EgMT64%ErvJQF0aX*4-+=a7fA@KbIXsS|hX&i1^$(Y)xcIsP|?
zk3`o`jS>V6DXEUrzw`%gJ{q9*l5NN_S$BWr8f&bmYEJViZ@a<IjyE6d{=V{LubIXR
z&zKgwM{W8#c7~?=PHCOm7f0{U&UpPg*uv?>I(uUNufN$#Y|<z6bRUuEJ~gU$B|rLJ
zMia~SYULC2+q)K>)9kKwmj5ZQa9i&+4%V+CAVQ{T4=%d!CS_la3O7hmtFKmuA9C6|
zWLwtrVf%=vQYS%VhC=bY!rE*zgItdzdp`yXn$^0CJCaJBvX!;25)hzV<UJ6R{z1sO
zKYp39^mYEg<yKnuV7W)+xX*bJJw^rrar2_oZ`#P)REl+vSGcIu9w86n$hlo%3vYF?
ziQku{93z~}rCf~dJHT82o9?Y9MZ0!`dduIpeW?0m|AN{w&tG$=b;1VsISO`q^zu%R
zc5(^dGnlnlyE35uRebDRQSNnjo{wU`W!T45p2+Fl-4EjDi38#n6n(G69nWvxTUhn{
zWq5Vn&6_3nMh04zZY^|IB&{+pdDZ;#n)an(iX^ouVZr>|`OX*3EZl3z>d&k~|F~GA
z?ZT>CfdJwQm+?k^Nkn%JTTndyll;*2$SSefu<|-=<P&r69jr31``dk08k3kRpDvuJ
z)#7QD9SU(#@g8c@chq+bY8Kql&fd)XsF2Sg20!GO>zs6~D0&x-y;hqjZipdpVQENQ
zslHgbp_mhE%PnP2ZK>M!;(2Akd)Ml?Woe>p$L0Z3y>+5D9s7LRG|k=j*ZH2~(S#;>
zadG8-8Ce`pvsr&D{y(CfA!b>W-CDFau|<1x6SQAuI@K?ml27%^rh5FeWVIn?E(SGO
zjw%qQO=c<EO>esfU7g`6$?7SInVI3&g=tTAQ^vDZ|B4B4qbc8OzuDyPTug2CKYih+
z6Zm!)_?f8wZ;8O_{I4!%q7pI8uX`Z?a~=Wxd&R4-s|&XZ@^Z|@3#@%yCNvpb!Gw=!
zPRPI&?q}hO`}~z$vAqUsxU9c~&Hbd+${MhWKtOIqtVBHmJ{<{1z~w%%n>EuA0qJl<
zdef-&e$gdvhfo#)rTY*tN+|lU5_(JLoPu8$a-(c*R^zb}QB2Ca7U^LZ;jyk9!Kk(X
z$CY@KGNImqfGQjJH!&N;KR6;_$0#&UdzXm-ofUTwAQ(K$`XhLx2mw;@zxYmMiPaF$
z_}f8NgSJRFC-2qe24R*@J!SG|OJgyo$*0#P!RO8`1a!cEEY9Y&@=_+W-sOzFM*!LW
zBl|9kFWfJ_PUeoTD(T0~M*x#E_E^NmAt03@auw#X>U?Z^iiM^y1uX>ht<RY7NwFDR
ziAR9<h1dX|csc9F5CTNIIO3x%_mY=>w0R_4I#gq|MwrC8rBd3;deh6QVU2G~WG&pC
zwY-*)J*X($mGapgekqikX4SKJmKS1dj7Lm+CLf505zu<Tz{)g@b30iB0qw?<uXtXf
zoHQ#dfrd8*0V$Lgfk#FrOSZ7F`%c8D$l2L=B4Es>jjPd&fMgqwiENoY;s7SEh0jkB
zO9+!=BMx`Ht4|mZwAAH%P!U(Bh|+4qh3m)92^W{bV`y?I94jgOotZDjG9HNyojzx=
zln`+GgvdjepVu$Q>&zVzrYs(|ceHsfF5s?j5-$<_bTrbMc^yXb4BnSKR<B)cLH4T-
zVm3?laG~wwL2;jW^J_n`J}dFT$7pUmtG#eC*;{LzbN-?IuIwrV;8^3$*R>}OO`P0Q
Il8QY0FD*Gu-2eap

literal 0
HcmV?d00001

diff --git a/Tests/images/crash-1152ec2d1a1a71395b6f2ce6721c38924d025bf3.tif b/Tests/images/crash-1152ec2d1a1a71395b6f2ce6721c38924d025bf3.tif
new file mode 100644
index 0000000000000000000000000000000000000000..c8d6e2aada30caad02b460a088519afaec3706d8
GIT binary patch
literal 4221
zcma)8c|6qJ_rHuKWl1E<phC);?CU5Yp68)LvJTlEOJoZ%rc{(HS&J}a%f1v+7!g8@
zwTY4}*_W}5Wz5Xy`|<pGeShEozTb0SpL^fu+;h)4_uTXP+-qbc1r7iJ4g<h|01Pma
zfjfrZcmn1bVT^#sUid@&mb1c`<u_)5F*gI#KUOwjeDt?`e+}Pnd>qEde(Mau82MYi
z@6Qaz`?|a^W5d7-bQl3JhVc<b1b`tN69eF7WCr_w1Yx;<6f3yI4!|RL(cL^oU<Z$V
zT<|1J2mWc(QUFLv0-$gj0G?9-Sf2!7?*srILI9M&+Oj-w#5w?Ix&Yu63jp>t03*Wy
z3~d9T!?W*izwOh05B(nR{udtl3Vj25aO(bNV*GzX{G0ZT{D%cbMg~U4e^36e0Qv|-
z;pmzF&k!8=Kg7U@U}9!rJ-~MG5Ufyhc>ib-j7$h-W+o<B8w1Y+CT`{<Clt=J@LX|Z
zJ?YDP?p{L90kI2JAC6w_Cy6WG@QYwO$ajoiKv3e8<mod~O3Es#YU&z#7xfJcFBut|
znOj`5yl!Rf<m}?=_P4u-e?Z{vpx}@@_a8irjC%AqIx#6ZCH2|!wDgy`dHDr}uZoJR
zU%#oTt$SOK3;gobtM=x_79Y(PSIKVI<HVaMh(3aYH-!ehB-_w(3DQTONDKFbp<laS
z#QU3mynXpwj0*u{G5o-4EZSiJV?G({IuYkO{nT@(;2u;J169UCZxW#Lm<=3eBmdrR
zc_g*`F1aXp9(QXlC$Kx}#>cyM%>kFo?KM9JUTX}rdmC{ZOKRV=_2oQQcr>u~1vcS=
zkn3x|n1m=Mo;PQDeS38Y;%m$HW7<>7Rb{^ftSJRSqk`NUZ+k;TM%3H2*%r}uDU&(^
zDxv%;(-nPWA5KM?1tBTbsVoNZ7@WQCD*AFs+sd6j&oq%2fle-%BU(SKKNmCj0hvbL
z*%I#WLFL8Q=dT#GY->u`wMp^~8j8u{zOFcC;SAj8-<9J<qi(h}D|Bi(rse6{dJBx~
zwHPn6X0O_(nl{&SiX<-#wU}j{Xq-;MN-u?kgd+};NPZDBYDHx$6>cnBA>xk|Tw<$v
zBwr!!vVLi*KqOyjtv85O%9##*ZYxatL}g2DA~2pSy><KpNaPJb6oh<OT(#r>E^*q7
zE~v4_uVxlIpg$MzBDCg4F?Ut(F}!Bwog}onja;EhhDE}3_aR|xgZ3mxA7slZL~%qm
z$Hy%siBr0e<6*4Q%bIZ4O^4J3o2*QCr$c&==+`dm&c@VTWmWINFtZ=b6h=3Mn$JlZ
z6Z{X^1r1Jkt%%>RQ=bcA))f=SNPp~@a51^|YhX4ZCjRwI>>I6@bgHSC%ROP#4}s~^
zWJ$coPE0Q+a=jYwqxh>zl=q2-Gh@iq<x&H~DxDXE;~AE1lOAIWH3|>B$%aD^;0kC(
z`c4ZM&Wv&jJVNBq597;%1AUY3<CRM>EC)H+<e~;C%q4GiS-aGk*xi8dLNHaTav;T{
zDs$7V&rzZnuh-|KfBpI4bB0$kl7`q3ah{tpNnFRg?Yy_CgqN*#pI!uMefwDas#+6~
zq0o$yuN3Y$N{O^g9?UEgl9iol=&f*G%6BF(eDN_KQ!%+v%Nt<#KD0^<0%hnt7pogl
zvOmk5vhq)NjXzFvM`i6L3CPFQi@gOwtc4ILZ`{6DD5QfI%gPcNFhLWG7SoRypNJh{
zYiA=P!1j_F($f6w(2#O;W4uXvwcqQ$MJ#rDcBw;PEQ7PYceP;jR}IQ%X|pDVf=hi@
z8%@dZIdgT&Bcl1p!Bh~gOKg`qn?jVTPZi?Klt*o7>rJpc_#sL>zTR}v2^rnYk-gH}
z|3QY0piB_#Z!yU;FYTEdj1%ta_9vrSn<PX3I(4Ml>)Vm4%fSeMJQCcwz!5V1+NvY7
z@bATqbL}%``OFw4Ez`-mc#G+}hps+96tyyNPs<sf`nUIw;x#8ZPj9KE2Z*V5k#$6x
ze69xPWskkk67e}2vZx`xo6vk&m5<?8$P|7-dUgXjJ9^pIuK`Ei$y%224=6k1NyA=K
zf3;GW=<3edZ0m4DU0^XT`zNvWMsa7OeSxy4#uK|I8kx=O-H7$PP+eAHCBZg*rqF0(
zynf2!&i8fg3o~W`XM2wYRcZ&*Ef)Ijdw1IiNG1AM=HNZnZEYI7N+lGQdvB=;Owr0G
zo1So8IQ#P3`-J(4;x2`O?b;5GlJ_I(Jf#sTt*Zz%^`BEQ5YTx3GuPTPu`8$ZQKoV1
zc<A#lbvcFCQqRlW?3-Gta7-GcSPr;6S3m!1_~B+>y3%M0&Ma(HPq|6AcZQ!;sCH%a
zm^d;n)N*9P+#%&hqp3fKv6Nt$>2*?h%u9Y9+nax8I5^MpufnOSnVC`8s_||*`gIT4
z#MYu3m#VF3R`-YSIrjt2hcT17yH)EyxynMgOS<LIidwx=XN$_`c7@QPkISc{$E;T5
zoc~TZrfpSQ^fO2jXS|&wV48aNi9d#`yUKjQyrSDgwx=;+J`1^X^i+NEj+2Sq-*!56
zJ{(<%91XX(`_(r}t%fqrP5ly&nZ9rD!!WC*+>xQ5MhbT{x!m4=^YkD3s;ur3nCZF=
zjki~=g1Bdo28W7dD3~m;EuWFECWd!Zg@45}DQmWqaB=cfZI;LR-yzVV`m={~YczO!
zu};IKL1pw=+Kp0Yqh$7yYU-4lGU<AQ%AtpE@lX7$Ev9o!iaj_age}T(`EQzP>nTx(
zZ)LGqkgVdQ5eF?AyF~gm?KPx3gZ?Pmf<UV_Y9cC%F1q92+$1v`ridDKu<_4X47V=5
zMz{ACsLM^g{w?z}YtNwa?l_XPBFJ00n<{iR|6sYLY3BKo#X#xR@Nva0x#PJXv^bI-
z9MgMWe9(|iahH_1xjd5L*7hmvQ1Om6T97L9g)<F1A^oaBld0A(|7}frA8&+O7Gq*Z
z!Jp$T&Fzcn8|zr^U>rwmceU44YNKFvjF_Fat&h)RcZnGS;nr>thcBn_nh(pQ$AtU9
ztK{tAB;Vmtl&ie=XIdQuBCdw{?KtIA53iZFit^dpd0=@5FTY;XX?#g=lS@%4(JA4M
z9N0EAdt>V!A#oxvK2rM*af`_EtN)`Tz0l;=mBv+3C5&7UZg>*uZ503MX5{C}WMQdV
zOY8R=i|=mNP=q^{74{BO5A953FQ!M9<<8SZhE~NIQ%AK=b&Za$w`eBIZneF2=J_6C
z26|Gb$rS_ZbkJQDu;{qpkn8bIJ-^tecw-^BJ`*|qxY#7>uyMgDo_Lv=?WOc^JFcmY
zttTXOOcPs}AyJ1nxXNBu@BEOxunO&@f?nC2i0iVZ#Uom~&5IkVH`UlV!X<H}t)N!h
z^N%|H4_Ied-@=U){Y6zYC3)ud(L;Ouv<9OTmkcaou0@CSCGNPH26u+N@yxxZ6&o0s
z!FPfG%u1JyHs>WI&?E+`=OvoX-1+LU7IVjn&#_+B@1)^fKO+GqnxFd5&C)81qxxNS
z`a=~0P3B~6=}Q9*?*me8BOOW=3F5RLUyomnv=epx7E84A@_#3tc(tj-OkdU^&gm38
zMt%2IhdPr;ZnXLO&W63h$!Od8#@?3$E)U$K5U0g*rq^|aBT*urUvl)#;v32dRu&JO
zK2tJQqsLrpUC~>ST*9m-{xOz(E(RGz^=b>LQ7O-rhBB!Hk-wBjx_L5ZW7fZKc5Lg1
z8)g|9Slq~ZH`>wJ%ennx_;tUQLcV00$oeHU^(i$12{)l$(NmR@|C!vMazTXrV_T=1
zWbj<&E&#>Ob=@%xgaY6BFAWEW<*(>;)JMf8y5Z+zQb{kf7g&tMq*x5by&xd91@GX(
zo_4%R%#_gezPCf%mhou>;2bwHJyn1bq{$!8Rhl0Y`NCIHtyR%>=T%^W)diKoPgBHu
ztMTo4be9CbpV87gkx~z9SxIL?I=TBx>O}7OyH@X<viE+ZP2$hDOgc;m#+I><U6L*!
zt2C(o>WE63kwmVoizqI3h>+vNlpc6k|8>3XT6EAes`|<(o2;N$tN2}Ju^r2#`KPQK
zrNy&va*d7taP}?~uqw=%!@EF0Z>&aPP`fJbJ;om`ORtnK-|%npMAKQb>xY*IW}y-I
z9o`JM55Ny`83Y42VB}^%a5F%ofE~dAGYD>g0(9?E2u$;jlRF{syh109CLci;{T@VT
zfk1q>4`l|m<v~*9nzYzdEL)Q|9on;QrR$nPz<wSA*~H!(;fUrQd=yG=1_F<9Yc$rq
zMF_l%4cEtE@mI+Sq$fK=@#1gxy6JoHg)sXu?C`Fro~g4}1?4L}cUN#-dZo$G!t@^H
zh==F`*B*XP%mR~!jUsD}My1<BpraexC`ylz9{jMnjU3~Ae{l~_5~U>*2U>U7$+sFY
zoHiY(wIv7`(k;q)c5q5gHj`Mf&gCW&MHUl&Y$ARKuV-wBF}*m58Xko}GiuYZ;z}6%
z7T?;gsBW+sU7JW7+~0%*CVv4FXG4{w1*kOGK;U>01QzeoFEkvZUZ>>ZROmuFXwzMR
z06b+EO=I(1s>W|qRX^`&;pv9_*tOS-6;b$gWFK}(GY|qfHQ@{`5Lkce3xUdc`c<7E
z83-i72K~D?b?(#3@kA<|*s6OF*i<W7(1N`sJ<EW9YOI@4qS#NV6|}JU83NOqDK+&Q
zj<P9Ak;5}g#qS;?LZA+1HWl_4ozn;c4x8}u#F;b*oK$Ut0A)1~yX>)10s+JWZO7eA
zIv)f+J$a1n5T!}ra>pw>sF~;%pS=?r^7Loj=sD9!bXzL~h&2$%%k7(p-$l;g$g>de
zHe88n$L>(?(;K|;o98PQ<pd!R^o%@2i;{ytLICXwH3$0vjhZf{D#BYpLSX*SlwEW@
zYE?@Cu7~1qw+Xruwvhw@TF5hcGNCh8dIdE|l_tH@yhx3H*2+`Whn<?kzQb-=Kf(&%
z$y91m%Ub24hQx21LBORV8{2}N&?pW=$!{o5@Ac5vAkg<vN>efM*~eIZ2n@^bjZfIn
zaEY3l6n^{TaB=z&D3&Q{SeC+1KidK~X(lG}yKZFE0G_`W0<kE|-7IDd-7RQ>u(K0S
zXQ0N02gZGyX^C8-5I*1*c<A-<w8SP~>YrP$sFGFiF?5?2k}C?kg7WF&0fTfI<Lyi=
zH(VU)G)sw{+(k<6Xby=QFScfAg!)b|!2j7zKTQ!yzO56~07o(c*Gn#T&Y-CvYn<qm
zh2@Pa)Z2SZpQl?)-k_hsKI&Ns#XrCf7w*N{Be$Lv^&5s{!55hvcB{8RbT?-A1*Rea
G8u=F|)5>rF

literal 0
HcmV?d00001

diff --git a/docs/releasenotes/6.2.2.5.rst b/docs/releasenotes/6.2.2.5.rst
index f8eef2065..7e25cc233 100644
--- a/docs/releasenotes/6.2.2.5.rst
+++ b/docs/releasenotes/6.2.2.5.rst
@@ -1,4 +1,4 @@
-6.2.2.4
+6.2.2.5
 -------
 
 Security
@@ -8,4 +8,5 @@ This release addresses several critical CVEs.
 
 :cve:`CVE-2020-35654`: In Pillow before 8.1.0, TiffDecode has a heap-based buffer overflow when decoding crafted YCbCr files because of certain interpretation conflicts with LibTIFF in RGBA mode.
 
+:cve:`CVE-2021-25289`: Catch TiffDecode heap-based buffer overflow. Add test files that show the CVE was fixed