Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
File renamed without changes.
2 changes: 1 addition & 1 deletion linux/Config.in
Original file line number Diff line number Diff line change
Expand Up @@ -143,7 +143,7 @@ config BR2_LINUX_KERNEL_CUSTOM_REPO_GIT_SUBMODULES

config BR2_LINUX_KERNEL_VERSION
string
default "7.1.2" if BR2_LINUX_KERNEL_LATEST_VERSION
default "7.1.3" if BR2_LINUX_KERNEL_LATEST_VERSION
default "5.10.254-cip72" if BR2_LINUX_KERNEL_LATEST_CIP_VERSION
default "5.10.254-cip72-rt32" if BR2_LINUX_KERNEL_LATEST_CIP_RT_VERSION
default BR2_LINUX_KERNEL_CUSTOM_VERSION_VALUE \
Expand Down
10 changes: 5 additions & 5 deletions linux/before-6.17/linux.hash
Original file line number Diff line number Diff line change
@@ -1,10 +1,10 @@
# From https://www.kernel.org/pub/linux/kernel/v6.x/sha256sums.asc
sha256 e998a232b9418db3301cb58468e291a4f41d6ab8306029b30d991f56251dc8d2 linux-6.12.94.tar.xz
sha256 dace1f8dc9c0dbf5df14f47e3229cd62c298e83049681731ef229f2ba7592932 linux-6.6.143.tar.xz
sha256 aa19772dba40e9737356c00d0671cdedbe26cc895eff062868f0a1f688ae44f6 linux-6.1.176.tar.xz
sha256 a9e8c51fcb1e695d1d35dde5886cba579cb6f29c9646c5889f39d63841d4b9f6 linux-6.12.95.tar.xz
sha256 ec19b8307b495078cdc03749e63cb3802ac23cf6122c82eb9719feeb4557ecc3 linux-6.6.144.tar.xz
sha256 f6529bfe1a457adab69156fb7fa2232cc203eb63f5e46210f9953d6fc9f70a30 linux-6.1.177.tar.xz
# From https://www.kernel.org/pub/linux/kernel/v5.x/sha256sums.asc
sha256 910ba46ae15e7495a9624f89d7f11b24ccc8bc1ee4b3abdd502e75b055290a01 linux-5.15.210.tar.xz
sha256 aa5e8e580a555e55176658b78fb6759f9c84654462b735119d4e819b5c46b609 linux-5.10.259.tar.xz
sha256 beb954e53617928b751944a89b6670bf9a9c7177c641b24c5dba504e46f1d961 linux-5.15.211.tar.xz
sha256 47a8297131505b7d38338d39ad8a9d592507d33c695b27b1bbe55f25869a6b84 linux-5.10.260.tar.xz
# Locally computed
sha256 bd5db7fe3b0475cce4fc72db7a7f7df1c22b970aabe5ebff6ddd48098973bdf2 linux-cip-5.10.254-cip72.tar.gz
sha256 97d7d5139900c10ff7435779be4857dda531e7cf6abba52c12a5f39aae195411 linux-cip-5.10.254-cip72-rt32.tar.gz
Expand Down
4 changes: 2 additions & 2 deletions linux/from-6.17/linux.hash
Original file line number Diff line number Diff line change
@@ -1,8 +1,8 @@
# From https://www.kernel.org/pub/linux/kernel/v7.x/sha256sums.asc
sha256 37198c93727be247c9fb5309bb86cd5e496c61e5322cd8c4eca9476bb0b5883f linux-7.1.2.tar.xz
sha256 be41c068e88f5242a19bccdbffbe077b18c47b45f627e2325504b4fab79dd1dc linux-7.1.3.tar.xz

# From https://www.kernel.org/pub/linux/kernel/v6.x/sha256sums.asc
sha256 a83cd200e6646db52866b8309e9137b9e9048b613cbda10ced2b811aae125255 linux-6.18.37.tar.xz
sha256 ac26e508abd56e9f8b89872b6e10c49fc823bcc70d8068a5d8504c1a7c4ff045 linux-6.18.38.tar.xz

# Licenses hashes
sha256 fb5a425bd3b3cd6071a3a9aff9909a859e7c1158d54d32e07658398cd67eb6a0 COPYING
Expand Down
Original file line number Diff line number Diff line change
@@ -0,0 +1,106 @@
From 0be89b6bb5c3983837b5e0febcbbbf452ecf7675 Mon Sep 17 00:00:00 2001
From: Evgeny Vereshchagin <evvers@ya.ru>
Date: Wed, 1 Apr 2026 05:31:58 +0000
Subject: [PATCH] core: refuse to accept publish flags where both wide_area and
multicast are set

It fixes a bug where it was possible for unprivileged local users to
crash avahi-daemon via D-Bus by calling EntryGroup methods accepting
flags and passing both AVAHI_PUBLISH_USE_WIDE_AREA and
AVAHI_PUBLISH_USE_MULTICAST there. For example when AddRecord was
invoked like that avahi-daemon crashed with
```
dbus-entry-group.c: interface=org.freedesktop.Avahi.EntryGroup, path=/Client0/EntryGroup1, member=AddRecord
avahi-daemon: entry.c:57: transport_flags_from_domain: Assertion `!((*flags & AVAHI_PUBLISH_USE_MULTICAST) && (*flags & AVAHI_PUBLISH_USE_WIDE_AREA))' failed.
==84944==
==84944== Process terminating with default action of signal 6 (SIGABRT)
==84944== at 0x4B353BC: __pthread_kill_implementation (pthread_kill.c:44)
==84944== by 0x4ADE941: raise (raise.c:26)
==84944== by 0x4AC64AB: abort (abort.c:77)
==84944== by 0x4AC641F: __assert_fail_base.cold (assert.c:118)
==84944== by 0x48A9404: transport_flags_from_domain (entry.c:57)
==84944== by 0x48A9F8F: server_add_internal (entry.c:224)
==84944== by 0x48AA49F: avahi_server_add (entry.c:324)
==84944== by 0x401A670: avahi_dbus_msg_entry_group_impl (dbus-entry-group.c:348)
==84944== by 0x4A70741: ??? (in /usr/lib/x86_64-linux-gnu/libdbus-1.so.3.38.3)
==84944== by 0x4A5FB22: dbus_connection_dispatch (in /usr/lib/x86_64-linux-gnu/libdbus-1.so.3.38.3)
==84944== by 0x401D01D: dispatch_timeout_callback (dbus-watch-glue.c:105)
==84944== by 0x488E3AE: timeout_callback (simple-watch.c:447)
==84944==
```
It's a follow-up to fbce111b069aa1e4c701ed37ee1d9f6d6cefaac5 where
those flags were introduced and consistent with the other places
where wide_area/multicast flags are used.

It was discovered by
Guillaume Meunier - Head of Vulnerability Operations Center France - Orange Cyberdefense

https://github.com/avahi/avahi/security/advisories/GHSA-w65r-6gxh-vhvc

CVE: CVE-2026-34933
Upstream: https://github.com/avahi/avahi/commit/0be89b6bb5c3983837b5e0febcbbbf452ecf7675
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
---
avahi-core/entry.c | 7 +++++++
1 file changed, 7 insertions(+)

diff --git a/avahi-core/entry.c b/avahi-core/entry.c
index 0d862133d..06eb12076 100644
--- a/avahi-core/entry.c
+++ b/avahi-core/entry.c
@@ -207,6 +207,7 @@ static AvahiEntry * server_add_internal(
AVAHI_PUBLISH_UPDATE|
AVAHI_PUBLISH_USE_WIDE_AREA|
AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
+ AVAHI_CHECK_VALIDITY_RETURN_NULL(s, !(flags & AVAHI_PUBLISH_USE_WIDE_AREA) || !(flags & AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY_RETURN_NULL(s, avahi_is_valid_domain_name(r->key->name), AVAHI_ERR_INVALID_HOST_NAME);
AVAHI_CHECK_VALIDITY_RETURN_NULL(s, r->ttl != 0, AVAHI_ERR_INVALID_TTL);
AVAHI_CHECK_VALIDITY_RETURN_NULL(s, !avahi_key_is_pattern(r->key), AVAHI_ERR_IS_PATTERN);
@@ -454,6 +455,7 @@ int avahi_server_add_address(
AVAHI_PUBLISH_UPDATE|
AVAHI_PUBLISH_USE_WIDE_AREA|
AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
+ AVAHI_CHECK_VALIDITY(s, !(flags & AVAHI_PUBLISH_USE_WIDE_AREA) || !(flags & AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY(s, !name || avahi_is_valid_fqdn(name), AVAHI_ERR_INVALID_HOST_NAME);

/* Prepare the host naem */
@@ -595,6 +597,7 @@ static int server_add_service_strlst_nocopy(
AVAHI_PUBLISH_UPDATE|
AVAHI_PUBLISH_USE_WIDE_AREA|
AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
+ AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, !(flags & AVAHI_PUBLISH_USE_WIDE_AREA) || !(flags & AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, avahi_is_valid_service_name(name), AVAHI_ERR_INVALID_SERVICE_NAME);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, avahi_is_valid_service_type_strict(type), AVAHI_ERR_INVALID_SERVICE_TYPE);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, !domain || avahi_is_valid_domain_name(domain), AVAHI_ERR_INVALID_DOMAIN_NAME);
@@ -754,6 +757,7 @@ static int server_update_service_txt_strlst_nocopy(
AVAHI_PUBLISH_NO_COOKIE|
AVAHI_PUBLISH_USE_WIDE_AREA|
AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
+ AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, !(flags & AVAHI_PUBLISH_USE_WIDE_AREA) || !(flags & AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, avahi_is_valid_service_name(name), AVAHI_ERR_INVALID_SERVICE_NAME);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, avahi_is_valid_service_type_strict(type), AVAHI_ERR_INVALID_SERVICE_TYPE);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, !domain || avahi_is_valid_domain_name(domain), AVAHI_ERR_INVALID_DOMAIN_NAME);
@@ -843,6 +847,7 @@ int avahi_server_add_service_subtype(
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, AVAHI_IF_VALID(interface), AVAHI_ERR_INVALID_INTERFACE);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, AVAHI_PROTO_VALID(protocol), AVAHI_ERR_INVALID_PROTOCOL);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, AVAHI_FLAGS_VALID(flags, AVAHI_PUBLISH_USE_MULTICAST|AVAHI_PUBLISH_USE_WIDE_AREA), AVAHI_ERR_INVALID_FLAGS);
+ AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, !(flags & AVAHI_PUBLISH_USE_WIDE_AREA) || !(flags & AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, avahi_is_valid_service_name(name), AVAHI_ERR_INVALID_SERVICE_NAME);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, avahi_is_valid_service_type_strict(type), AVAHI_ERR_INVALID_SERVICE_TYPE);
AVAHI_CHECK_VALIDITY_SET_RET_GOTO_FAIL(s, !domain || avahi_is_valid_domain_name(domain), AVAHI_ERR_INVALID_DOMAIN_NAME);
@@ -910,6 +915,7 @@ static AvahiEntry *server_add_dns_server_name(
assert(name);

AVAHI_CHECK_VALIDITY_RETURN_NULL(s, AVAHI_FLAGS_VALID(flags, AVAHI_PUBLISH_USE_WIDE_AREA|AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
+ AVAHI_CHECK_VALIDITY_RETURN_NULL(s, !(flags & AVAHI_PUBLISH_USE_WIDE_AREA) || !(flags & AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY_RETURN_NULL(s, type == AVAHI_DNS_SERVER_UPDATE || type == AVAHI_DNS_SERVER_RESOLVE, AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY_RETURN_NULL(s, port != 0, AVAHI_ERR_INVALID_PORT);
AVAHI_CHECK_VALIDITY_RETURN_NULL(s, avahi_is_valid_fqdn(name), AVAHI_ERR_INVALID_HOST_NAME);
@@ -967,6 +973,7 @@ int avahi_server_add_dns_server_address(
AVAHI_CHECK_VALIDITY(s, AVAHI_IF_VALID(interface), AVAHI_ERR_INVALID_INTERFACE);
AVAHI_CHECK_VALIDITY(s, AVAHI_PROTO_VALID(protocol) && AVAHI_PROTO_VALID(address->proto), AVAHI_ERR_INVALID_PROTOCOL);
AVAHI_CHECK_VALIDITY(s, AVAHI_FLAGS_VALID(flags, AVAHI_PUBLISH_USE_MULTICAST|AVAHI_PUBLISH_USE_WIDE_AREA), AVAHI_ERR_INVALID_FLAGS);
+ AVAHI_CHECK_VALIDITY(s, !(flags & AVAHI_PUBLISH_USE_WIDE_AREA) || !(flags & AVAHI_PUBLISH_USE_MULTICAST), AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY(s, type == AVAHI_DNS_SERVER_UPDATE || type == AVAHI_DNS_SERVER_RESOLVE, AVAHI_ERR_INVALID_FLAGS);
AVAHI_CHECK_VALIDITY(s, port != 0, AVAHI_ERR_INVALID_PORT);
AVAHI_CHECK_VALIDITY(s, !domain || avahi_is_valid_domain_name(domain), AVAHI_ERR_INVALID_DOMAIN_NAME);
3 changes: 3 additions & 0 deletions package/avahi/avahi.mk
Original file line number Diff line number Diff line change
Expand Up @@ -60,6 +60,9 @@ AVAHI_IGNORE_CVES += CVE-2025-68471
# 0016-core-fix-uncontrolled-recursion-bug-using-a-simple-loop-detection-algorithm.patch
AVAHI_IGNORE_CVES += CVE-2026-24401

# 0017-core-refuse-to-accept-publish-flags-where-both-wide-area-and-multicast-are-set.patch
AVAHI_IGNORE_CVES += CVE-2026-34933

AVAHI_CONF_ENV = \
avahi_cv_sys_cxx_works=yes \
DATADIRNAME=share
Expand Down
Original file line number Diff line number Diff line change
@@ -0,0 +1,41 @@
From 50d94ca0f2fa6177613c97c59791bde568631865 Mon Sep 17 00:00:00 2001
From: Till Kamppeter <till.kamppeter@gmail.com>
Date: Mon, 10 Nov 2025 18:31:48 +0100
Subject: [PATCH] Fix out-of-bounds write in pdftoraster

PDFs with too large page dimensions could cause an integer overflow and then a too small buffer for the pixel line to be allocated.

Fixed this by cropping the page size to the maximum allowed by the standard, 14400x14400pt, 200x200in, 5x5m

https://community.adobe.com/t5/indesign-discussions/maximum-width-of-a-pdf/td-p/9217372

CVE: CVE-2025-64503
Upstream: https://github.com/OpenPrinting/cups-filters/commit/50d94ca0f2fa6177613c97c59791bde568631865
Signed-off-by: Thomas Perale <thomas.perale@mind.be>
---
filter/pdftoraster.cxx | 12 ++++++++++++
1 file changed, 12 insertions(+)

diff --git a/filter/pdftoraster.cxx b/filter/pdftoraster.cxx
index 7b3af924f..b64b34c62 100755
--- a/filter/pdftoraster.cxx
+++ b/filter/pdftoraster.cxx
@@ -1698,6 +1698,18 @@ static void outPage(poppler::document *doc, int pageNo,
header.PageSize[0] = (unsigned)l;
else
header.PageSize[1] = (unsigned)l;
+ /*
+ Maximum allowed page size for PDF is 200x200 inches (~ 5x5 m), or 14400x14400 pt
+ https://community.adobe.com/t5/indesign-discussions/maximum-width-of-a-pdf/td-p/9217372
+ */
+ if (header.PageSize[0] > 14400) {
+ fprintf(stderr, "ERROR: Page width is %dpt, too large, cropping to 14400pt\n", header.PageSize[0]);
+ header.PageSize[0] = 14400;
+ }
+ if (header.PageSize[1] > 14400) {
+ fprintf(stderr, "ERROR: Page height is %dpt, too large, cropping to 14400pt\n", header.PageSize[1]);
+ header.PageSize[1] = 14400;
+ }

memset(paperdimensions, 0, sizeof(paperdimensions));
memset(margins, 0, sizeof(margins));
3 changes: 3 additions & 0 deletions package/cups-filters/cups-filters.mk
Original file line number Diff line number Diff line change
Expand Up @@ -21,6 +21,9 @@ CUPS_FILTERS_IGNORE_CVES += CVE-2023-24805
# 0002-rastertopclx.c-Fix-infinite-loop-caused-by-crafted-f.patch
CUPS_FILTERS_IGNORE_CVES += CVE-2025-64524

# 0005-fix-out-of-bounds-write-in-pdftoraster.patch
CUPS_FILTERS_IGNORE_CVES += CVE-2025-64503

CUPS_FILTERS_DEPENDENCIES = cups libglib2 lcms2 qpdf fontconfig freetype jpeg

CUPS_FILTERS_CONF_OPTS = \
Expand Down
4 changes: 2 additions & 2 deletions package/gnupg2/gnupg2.hash
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
# From https://www.gnupg.org/download/integrity_check.html
sha1 96371ec0260da5a22edbf8e4d3bf0e54b3ea5b8e gnupg-2.5.20.tar.bz2
sha256 6461266e99c308419a379abe6c356d54c214136c4589bd65951091138989ffc6 gnupg-2.5.20.tar.bz2
sha1 51fae4f4d902787624eb7047f6d3e7c263ad7690 gnupg-2.5.21.tar.bz2
sha256 e3af2c8caa46a66a9329fa7c6880af260451914d819595beabc2c26597b31352 gnupg-2.5.21.tar.bz2
# Locally calculated
sha256 bc2d6664f6276fa0a72d57633b3ae68dc7dcb677b71018bf08c8e93e509f1357 COPYING
2 changes: 1 addition & 1 deletion package/gnupg2/gnupg2.mk
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
#
################################################################################

GNUPG2_VERSION = 2.5.20
GNUPG2_VERSION = 2.5.21
GNUPG2_SOURCE = gnupg-$(GNUPG2_VERSION).tar.bz2
GNUPG2_SITE = https://gnupg.org/ftp/gcrypt/gnupg
GNUPG2_LICENSE = GPL-3.0+
Expand Down
2 changes: 1 addition & 1 deletion package/hwdata/hwdata.hash
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
# Locally calculated
sha256 1ccfd1ca723595b1fe8794f4157ec5635be1ebedb5d13769b4be75d0b75bc199 hwdata-0.406.tar.gz
sha256 23006accc0f931dd5187d0307a57d0744e2b8feb85e73c37bc0f5229fb31eadd hwdata-0.409.tar.gz
sha256 8177f97513213526df2cf6184d8ff986c675afb514d4e68a404010521b880643 COPYING
sha256 21d0406f93e884a050426ebc21931839a45d56bfcbcbfdda7686d583f36f107f LICENSE
2 changes: 1 addition & 1 deletion package/hwdata/hwdata.mk
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
#
################################################################################

HWDATA_VERSION = 0.406
HWDATA_VERSION = 0.409
HWDATA_SITE = $(call github,vcrhonek,hwdata,v$(HWDATA_VERSION))
HWDATA_LICENSE = GPL-2.0+, BSD-3-Clause, XFree86 1.0
HWDATA_LICENSE_FILES = COPYING LICENSE
Expand Down
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
File renamed without changes.
14 changes: 7 additions & 7 deletions package/linux-headers/Config.in.host
Original file line number Diff line number Diff line change
Expand Up @@ -472,13 +472,13 @@ endchoice

config BR2_DEFAULT_KERNEL_HEADERS
string
default "5.10.259" if BR2_KERNEL_HEADERS_5_10
default "5.15.210" if BR2_KERNEL_HEADERS_5_15
default "6.1.176" if BR2_KERNEL_HEADERS_6_1
default "6.6.143" if BR2_KERNEL_HEADERS_6_6
default "6.12.94" if BR2_KERNEL_HEADERS_6_12
default "6.18.37" if BR2_KERNEL_HEADERS_6_18
default "7.1.2" if BR2_KERNEL_HEADERS_7_1
default "5.10.260" if BR2_KERNEL_HEADERS_5_10
default "5.15.211" if BR2_KERNEL_HEADERS_5_15
default "6.1.177" if BR2_KERNEL_HEADERS_6_1
default "6.6.144" if BR2_KERNEL_HEADERS_6_6
default "6.12.95" if BR2_KERNEL_HEADERS_6_12
default "6.18.38" if BR2_KERNEL_HEADERS_6_18
default "7.1.3" if BR2_KERNEL_HEADERS_7_1
default BR2_DEFAULT_KERNEL_VERSION if BR2_KERNEL_HEADERS_VERSION
default "custom" if BR2_KERNEL_HEADERS_CUSTOM_TARBALL
default BR2_KERNEL_HEADERS_CUSTOM_REPO_VERSION \
Expand Down
4 changes: 2 additions & 2 deletions package/tiff/tiff.hash
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
# Locally computed after checking pgp signature
# https://download.osgeo.org/libtiff/tiff-4.7.1.tar.xz.sig
# https://download.osgeo.org/libtiff/tiff-4.7.2.tar.xz.sig
# with key: B1FA7D81EEB8E66399178B9733EBBFC47B3DD87D
sha256 b92017489bdc1db3a4c97191aa4b75366673cb746de0dce5d7a749d5954681ba tiff-4.7.1.tar.xz
sha256 4996f0c4f93094719b1ca5c6279b20e588773ba8a247533e486416fb662ddb88 tiff-4.7.2.tar.xz
sha256 0e27c2382d7b8147972bbb746e04059a1152c8d0fda9d03ef1399d1a433c4ade LICENSE.md
2 changes: 1 addition & 1 deletion package/tiff/tiff.mk
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@
#
################################################################################

TIFF_VERSION = 4.7.1
TIFF_VERSION = 4.7.2
TIFF_SOURCE = tiff-$(TIFF_VERSION).tar.xz
TIFF_SITE = https://download.osgeo.org/libtiff
TIFF_LICENSE = tiff license
Expand Down