[Secure-testing-commits] r31656 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 25 06:56:09 UTC 2015
Author: carnil
Date: 2015-01-25 06:56:09 +0000 (Sun, 25 Jan 2015)
New Revision: 31656
Modified:
data/CVE/list
Log:
Add bug reference for tiff issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2015-01-25 06:56:02 UTC (rev 31655)
+++ data/CVE/list 2015-01-25 06:56:09 UTC (rev 31656)
@@ -7375,20 +7375,20 @@
NOTE: https://www.redhat.com/archives/libvir-list/2014-December/msg00600.html
CVE-2014-8130 [divide by zero]
RESERVED
- - tiff <unfixed>
+ - tiff <unfixed> (bug #776185)
- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
NOTE: Advisory: http://www.conostix.com/pub/adv/CVE-2014-8130-LibTIFF-Division_By_Zero.txt
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2483
CVE-2014-8129 [out-of-bound read and write]
RESERVED
- - tiff <unfixed>
+ - tiff <unfixed> (bug #776185)
- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
NOTE: Advisory: http://www.conostix.com/pub/adv/CVE-2014-8129-LibTIFF-Out-of-bounds_Reads_and_Writes.txt
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2487 (tiff2pdf)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2488 (tiff2pdf)
CVE-2014-8128 [out-of-bounds write]
RESERVED
- - tiff <unfixed>
+ - tiff <unfixed> (bug #776185)
- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
NOTE: Advisory: http://www.conostix.com/pub/adv/CVE-2014-8128-LibTIFF-Out-of-bounds_Writes.txt
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2489 (thumbnail)
@@ -7401,7 +7401,7 @@
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2501 (tiffdither) [not fixed yet in CVS HEAD]
CVE-2014-8127 [out-of-bound reads]
RESERVED
- - tiff <unfixed>
+ - tiff <unfixed> (bug #776185)
- tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF tools)
NOTE: Advisory: http://www.conostix.com/pub/adv/CVE-2014-8127-LibTIFF-Out-of-bounds_Reads.txt
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2484 (thumbnail)
More information about the Secure-testing-commits
mailing list