[Secure-testing-commits] r40695 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Apr 1 14:07:52 UTC 2016
Author: carnil
Date: 2016-04-01 14:07:52 +0000 (Fri, 01 Apr 2016)
New Revision: 40695
Modified:
data/CVE/list
Log:
Add CVE-2016-3076/pillow
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-04-01 10:48:56 UTC (rev 40694)
+++ data/CVE/list 2016-04-01 14:07:52 UTC (rev 40695)
@@ -1776,8 +1776,13 @@
RESERVED
CVE-2016-3077
RESERVED
-CVE-2016-3076
+CVE-2016-3076 [j2k integer overflow error on encode]
RESERVED
+ - pillow <unfixed> (unimportant)
+ - python-imaging <removed> (unimportant)
+ NOTE: https://github.com/python-pillow/Pillow/commit/a1f244343df389cf15cdfff80327594821097295
+ NOTE: Marked as unimportant since source vulnerable but in Debian we do
+ NOTE: not built against openjpeg by default
CVE-2016-3075
RESERVED
CVE-2016-3074
More information about the Secure-testing-commits
mailing list