[Secure-testing-commits] r32079 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Feb 7 21:55:23 UTC 2015
Author: carnil
Date: 2015-02-07 21:55:23 +0000 (Sat, 07 Feb 2015)
New Revision: 32079
Modified:
data/CVE/list
Log:
Add two tiff issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-02-07 21:41:46 UTC (rev 32078)
+++ data/CVE/list 2015-02-07 21:55:23 UTC (rev 32079)
@@ -53,6 +53,10 @@
CVE-2010-XXXX [crash when parsing overly long links]
- lynx-cur 2.8.8dev.4-1
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/07/2
+CVE-2015-1547 [uninitialized memory in NeXTDecode]
+ - tiff <unfixed>
+ - tiff3 <removed>
+ NOTE: http://lcamtuf.coredump.cx/afl/vulns/libtiff5.tif
CVE-2015-1482 (Ansible Tower (aka Ansible UI) before 2.0.5 allows remote attackers to ...)
NOT-FOR-US: Ansible Tower
CVE-2015-1481 (Ansible Tower (aka Ansible UI) before 2.0.5 allows remote organization ...)
@@ -169,6 +173,11 @@
[wheezy] - cabextract <no-dsa> (Minor issue)
[squeeze] - cabextract <no-dsa> (Minor issue)
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/02/03/12
+CVE-2014-9655 [access of uninitialized memory]
+ - tiff <unfixed>
+ - tiff3 <removed>
+ NOTE: http://lcamtuf.coredump.cx/afl/vulns/libtiff-cvs-1.tif
+ NOTE: http://lcamtuf.coredump.cx/afl/vulns/libtiff-cvs-2.tif
CVE-2014-9654
- icu <unfixed> (bug #776719)
NOTE: https://ssl.icu-project.org/trac/changeset/36801
More information about the Secure-testing-commits
mailing list