[Secure-testing-commits] r23325 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Thu Aug 15 07:24:02 UTC 2013
Author: carnil
Date: 2013-08-15 07:24:01 +0000 (Thu, 15 Aug 2013)
New Revision: 23325
Modified:
data/CVE/list
Log:
update entries for CVE-2013-4243 and CVE-2013-4244 in tiff, part of external check
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-15 07:21:09 UTC (rev 23324)
+++ data/CVE/list 2013-08-15 07:24:01 UTC (rev 23325)
@@ -1901,10 +1901,15 @@
RESERVED
CVE-2013-4245
RESERVED
-CVE-2013-4244
+CVE-2013-4244 [gif2tiff: OOB Write in LZW decompressor]
RESERVED
-CVE-2013-4243
+ - tiff <unfixed>
+ - tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
+CVE-2013-4243 [gif2tiff: possible heap-based buffer overflow in readgifimage()]
RESERVED
+ - tiff <unfixed>
+ - tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
+ TODO: check
CVE-2013-4242 [the Yarom/Falkner flush+reload side-channel attack on RSA secret keys]
RESERVED
{DSA-2731-1 DSA-2730-1}
More information about the Secure-testing-commits
mailing list