It is possible that older versions are not vulnerable.
$ sudo apt-get install leptonica-progs
$ TMPDIR=/var/tmp fileinfo /tmp/foo.jpg
Error in fopenReadStream: file not found
Error in pixReadHeader: image file not found
Error in writeImageFileInfo: failure to read header of /tmp/foo.jpg
$ filein
On Thu, 22 Feb 2018 22:26:13 -0800 Jeff Breidenbach wrote:
> This is the patch I used for Leptonica 1.74. It should work fine for
> earlier versions.
> Upstream used a different approach for addressing the problem in version
> 1.75.
Hi Jeff,
I have been unable to reproduce the issue in earlier v
This is the patch I used for Leptonica 1.74. It should work fine for
earlier versions.
Upstream used a different approach for addressing the problem in version
1.75.
do-not-mess-with-paths.diff.gz
Description: GNU Zip compressed data
Jeff,
Can you share the changes you made to fix this issue. Please also use a
VCS to track debian changes. :)
-Abhijith
Most likely we'll have a fix into Debian within 48 hours.
I've reproduced by setting TMPDIR to /var/tmp. Talking to Leptonica author.
Peter, what do you have set for TMPDIR environment variable? (You can check
this with "env")
I cannot reproduce this problem on Debian Unstable. We have a mystery.
$ tesseract /tmp/ANY/PATH/phototest.tif - -
Page 1
This is a lot of 12 point text to test the
ocr code and see if it works on all types
of file format.
The quick brown dog jumped over the
lazy fox. The quick brown dog jumped
Will investigate.
Package: liblept5
Version: 1.74.4-1
Severity: important
Hi,
the new version of tesseract strangely plays with input files in paths below
/tmp/
Any of the following calls work
$ tesseract input.tif stdout -l deu -c tessedit_create_hocr=1
$ tesseract /home/user/input.tif stdout -l deu -c tessed
10 matches
Mail list logo