maintainer-feedback requested: [Bug 267276] graphics/tiff: Backport fixes for CVE-2022-2519, CVE-2022-2520 and CVE-2022-2521

From: <bugzilla-noreply_at_freebsd.org>
Date: Sat, 22 Oct 2022 20:24:52 UTC
Bugzilla Automation <bugzilla@FreeBSD.org> has asked freebsd-desktop (Team)
<desktop@FreeBSD.org> for maintainer-feedback:
Bug 267276: graphics/tiff: Backport fixes for CVE-2022-2519, CVE-2022-2520 and
CVE-2022-2521
https://bugs.freebsd.org/bugzilla/show_bug.cgi?id=267276



--- Description ---
Backport upstream commits 8fe3735942ea1d90d8cef843b55b3efe8ab6feaf and
bad48e90b410df32172006c7876da449ba62cdba

References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2519
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2520
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-2521

Compile tested on FreeBSD 13.1-STABLE (amd64) (make, make test, make
check-plist)
Poudriere testport OK 12.3-RELEASE (amd64)
Poudriere testport OK 13.1-RELEASE (i386)