[Secure-testing-commits] r43996 - data/CVE
Henri Salo
fgeek-guest at moszumanska.debian.org
Tue Aug 16 17:32:18 UTC 2016
Author: fgeek-guest
Date: 2016-08-16 17:32:17 +0000 (Tue, 16 Aug 2016)
New Revision: 43996
Modified:
data/CVE/list
Log:
tiff bmp2tiff utility removed in upstream
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-08-16 12:54:31 UTC (rev 43995)
+++ data/CVE/list 2016-08-16 17:32:17 UTC (rev 43996)
@@ -4993,6 +4993,7 @@
- tiff3 <removed>
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2562
NOTE: Reproducer http://bugs.fi/media/afl/libtiff/CVE-2016-5319.bmp
+ NOTE: Utility bmp2tiff has been removed from upstream LibTIFF
CVE-2016-5318 [libtiff: stack buffer overflow in _TIFFVGetField function]
RESERVED
- tiff <unfixed>
@@ -10150,6 +10151,7 @@
- tiff3 <not-affected> (tiff tools not built)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2565
NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/3
+ NOTE: Utility bmp2tiff has been removed from upstream LibTIFF
CVE-2016-3620 [Out-of-bound read in ZIPEncode]
RESERVED
- tiff <unfixed> (low; bug #820363)
@@ -10158,6 +10160,7 @@
- tiff3 <not-affected> (tiff tools not built)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2570
NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/2
+ NOTE: Utility bmp2tiff has been removed from upstream LibTIFF
CVE-2016-3619 [Memory corruption in DumpModeEncode triggered by crafted bmp file]
RESERVED
- tiff <unfixed> (low; bug #820362)
@@ -10166,6 +10169,7 @@
- tiff3 <not-affected> (tiff tools not built)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2567
NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/1
+ NOTE: Utility bmp2tiff has been removed from upstream LibTIFF
CVE-2016-3618
RESERVED
CVE-2016-3617
More information about the Secure-testing-commits
mailing list