Skip to content

libtiff: security update to 4.7.1#13500

Draft
pch666777 wants to merge 80 commits intostablefrom
libtiff-4.7.1
Draft

libtiff: security update to 4.7.1#13500
pch666777 wants to merge 80 commits intostablefrom
libtiff-4.7.1

Conversation

@pch666777
Copy link
Contributor

@pch666777 pch666777 commented Nov 6, 2025

Topic Description

Resolve issues#12721, fix CVE-2025-9900.

  • libtiff: update to 4.7.1, and disable doc build, add zstd dependency ofter used find-deps.
  • openjpeg: bump REL, and disable doxygen doc, remove conflicting 'NOSTATIC=0', because already used
    -DBUILD_STATIC_LIBS=OFF .
  • spandsp: bump REL, and disable doc build, disable fixed point, because hardware have FPU.
  • djview4: bump REL, and add loongarch64 and risv64 support.
  • libtiff-5: new, 4.4.0, a copy of libtiff 4.4.0-4, remove useless files.
  • proj: bump REL, and add missing dependencies.
  • devil: bump REL, and fix iJp2_file_read() and iJp2_file_write() function definition mismatch.
  • ghostscript, tracker-miners: bump REL, and fix build with gcc >= 15.
  • argyllcms and 68 other packages are simply bump REL due to libtiff update to 4.7.1.

Package(s) Affected

  • argyllcms: 3.4.1-1
  • atril: 1.28.1-2
  • chafa: 1.16.2-1
  • darktable: 1:5.4.0-1
  • devil: 1.8.0-3
  • digikam: 8.8.0-1
  • digikam-trinity: 14.1.5-1
  • djview4: 4.12-3
  • djvulibre: 3.5.29-1
  • emacs: 30.2-2
  • enblend-enfuse: 4.2-9
  • evince: 42.3-3
  • fim: 1:0.7.1-1
  • fontforge: 20251009-3
  • fox: 1.6.59-1
  • gdal: 3.12.0-3
  • gegl-0.4: 0.4.64-2
  • ghostscript: 9.54.0-5
  • gimp: 3.0.6-1
  • gmic: 3.6.6-1
  • goldendict: 1:1.5.0-2
  • graphicsmagick: 1.3.46-1
  • gtk-4: 1:4.20.3-1
  • gtk-update-icon-cache: 4.20.3-1
  • gwenview: 23.08.5-2
  • hugin: 2024.0.1-2
  • imagemagick+7: 7.1.1+32-1
  • imagemagick: 6.9.13+37-1
  • imlib2: 1.5.1-2
  • imv: 5.0.0-1
  • koffice-trinity: 14.1.5-1
  • krita: 5.2.14-3
  • lcms1: 1.19-5
  • lcms2: 2.17-1
  • leptonica: 1.84.1-1
  • libcamera: 0.7.0-1
  • libcupsfilters: 2.1.1-1
  • libgd: 2.3.3-4
  • libgdiplus: 6.2-1
  • libgeotiff: 1.7.4-1
  • libgxps: 0.3.2-1
  • libheif: 1.20.2-1
  • libpano13: 2.9.23-1
  • libreoffice: 25.8.0.4-3
  • libtiff: 4.7.1
  • libtiff-5: 4.4.0
  • libvips: 8.18.0-2
  • libwebp: 1.6.0-1
  • netpbm: 1:10.86.48-1
  • okular: 23.08.5-4
  • opencv: 4.12.0-6
  • openimageio: 2.5.19.1-2
  • openjpeg: 2.5.2-1
  • openscenegraph: 3:3.6.5-9
  • openslide: 4.0.0-1
  • pillow: 12.0.0-1
  • podofo: 0.10.3-1
  • poppler: 1:25.07.0-3
  • povray: 1:3.7.0.10-3
  • proj: 9.7.1-1
  • qt-4: 4.8.7-25
  • qt-5: 1:5.15.16+webengine5.15.18+webkit5.212.0+kde20241121-7
  • qt-5-doc: 1:5.15.16+webengine5.15.18+webkit5.212.0+kde20241121-7
  • qt-6: 6.10.0-1
  • qt-6-doc: 6.10.0-1
  • r: 4.5.2-1
  • sagemath: 10.7-3
  • sane-backends: 1.4.0-1
  • scantailor: 1:0-1
  • scantailor-advanced: 1.0.19-2
  • scribus: 1.6.5-2
  • spandsp: 0.0.6-3
  • tdegraphics: 14.1.5-2
  • tdelibs: 14.1.5-2
  • tracker-miners: 3.3.1-5
  • vigra: 1.12.3-2
  • vtk: 9.5.2-3
  • windowmaker: 0.95.9+git20220812-1
  • wxbase: 1:3.2.8-1
  • wxgtk3: 1:3.2.8-1
  • xplanet: 1.3.1-4
  • xreader: 4.6.1-1
  • xsane: 0.999-5-1

Security Update?

Yes, #12721

Build Order

#buildit libtiff:-pkgbreak libwebp argyllcms lcms2 openjpeg libgxps ghostscript gtk-4 djvulibre qt-4 qt-5 qt-6 poppler atril libheif imagemagick chafa graphicsmagick proj libgeotiff podofo gdal openslide vtk opencv gmic libcamera darktable devil digikam lcms1 tdelibs digikam-trinity djview4 emacs vigra enblend-enfuse evince fim fontforge fox gegl-0.4 gimp gwenview libpano13 wxwidgets hugin imagemagick+7 imlib2 imv sane-backends tdegraphics koffice-trinity krita leptonica libcupsfilters libgd libgdiplus libvips netpbm okular openimageio openscenegraph pillow povray r goldendict sagemath scantailor-advanced scantailor scribus spandsp tracker-miners windowmaker xplanet xreader xsane libtiff libtiff-5 libreoffice

Test Build(s) Done

Primary Architectures

  • AMD64 amd64
  • AArch64 arm64
  • LoongArch 64-bit loongarch64

Secondary Architectures

  • Loongson 3 loongson3
  • PowerPC 64-bit (Little Endian) ppc64el
  • RISC-V 64-bit riscv64

@pch666777 pch666777 added upgrade Topic/issue involves a package upgrade abi-break Topic/issue involves an ABI (Application Binary Interface) breakage security Topic/issue involves a security issue/fixed labels Nov 6, 2025
@pch666777 pch666777 force-pushed the libtiff-4.7.1 branch 3 times, most recently from 1f232ea to c64358a Compare November 14, 2025 08:12
@pch666777 pch666777 force-pushed the libtiff-4.7.1 branch 5 times, most recently from 564eba0 to 5cfa35c Compare December 5, 2025 04:47
@pch666777 pch666777 added the manual-build Topic requires manual building/uploading label Dec 8, 2025
@pch666777 pch666777 force-pushed the libtiff-4.7.1 branch 6 times, most recently from 7899b9a to a7a2ab8 Compare December 17, 2025 06:13
@pch666777 pch666777 force-pushed the libtiff-4.7.1 branch 6 times, most recently from c948f93 to 0b2dcfe Compare December 25, 2025 08:58
@pch666777 pch666777 force-pushed the libtiff-4.7.1 branch 3 times, most recently from c3e9884 to 8551529 Compare December 30, 2025 06:58
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

abi-break Topic/issue involves an ABI (Application Binary Interface) breakage manual-build Topic requires manual building/uploading security Topic/issue involves a security issue/fixed upgrade Topic/issue involves a package upgrade

Projects

None yet

Development

Successfully merging this pull request may close these issues.

libtiff: security update to 4.17.1

2 participants

Comments