[Secure-testing-commits] r42792 - data/CVE

Sat Jun 25 17:35:54 UTC 2016

Author: pochu
Date: 2016-06-25 17:35:54 +0000 (Sat, 25 Jun 2016)
New Revision: 42792

Modified:
   data/CVE/list
Log:
triage tiff CVEs

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2016-06-25 16:18:04 UTC (rev 42791)
+++ data/CVE/list	2016-06-25 17:35:54 UTC (rev 42792)
@@ -1074,6 +1074,7 @@
 	[jessie] - tiff <no-dsa> (Minor issue)
 	[wheezy] - tiff <no-dsa> (Minor issue)
 	- tiff3 <removed>
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2559
 CVE-2016-5322 [extractContigSamplesBytes:  out-of-bounds read]
 	RESERVED
 	- tiff <unfixed>
@@ -1081,36 +1082,39 @@
 	[wheezy] - tiff <no-dsa> (Minor issue)
 	- tiff3 <removed> (unimportant)
 	NOTE: src:tiff3: built binary packages do not contain the TIFF tools
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2560
 CVE-2016-5321 [DumpModeDecode(): Ddos]
 	RESERVED
 	- tiff <unfixed>
 	- tiff3 <removed>
-	TODO: check
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2558
 CVE-2016-5320 [rgb2ycbcr: command excution]
 	RESERVED
 	- tiff <unfixed>
 	- tiff3 <removed>
 	TODO: check
+	NOTE: See http://bugzilla.maptools.org/show_bug.cgi?id=2554#c1
 CVE-2016-5317 [GNOME nautilus: crash occurs when generating a thumbnail for a crafted TIFF image]
 	RESERVED
 	- tiff <unfixed>
 	- tiff3 <removed>
 	TODO: check, disputable that this actually would be as well a nautilus issue
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2557
 CVE-2016-5316 [tif_pixarlog.c:  PixarLogCleanup() Segmentation fault]
 	RESERVED
 	- tiff <unfixed>
 	- tiff3 <removed>
-	TODO: check
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2556
 CVE-2016-5315 [tif_dir.c: setByteArray() Read access violation]
 	RESERVED
 	- tiff <unfixed>
 	- tiff3 <removed>
-	TODO: check
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2555
 CVE-2016-5314 [PixarLogDecode() out-of-bound writes]
 	RESERVED
 	- tiff <unfixed>
 	- tiff3 <removed>
-	TODO: check
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2554
 CVE-2016-5313
 	RESERVED
 CVE-2016-5312
@@ -1410,11 +1414,14 @@
 	RESERVED
 	- tiff <unfixed>
 	- tiff3 <removed>
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2562
 CVE-2016-5318 [libtiff: stack buffer overflow in _TIFFVGetField function]
 	RESERVED
 	- tiff <unfixed>
 	- tiff3 <removed>
 	NOTE: Upstream will remove thumbnail from 4.0.7 release
+	NOTE: _TIFFVGetField isn't specific to thumbnail tool
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2561
 CVE-2016-5301 [denial of service]
 	RESERVED
 	{DLA-511-1}
@@ -14806,6 +14813,7 @@
 	NOTE: http://seclists.org/bugtraq/2015/Dec/138
 	NOTE: no fix published yet
 	NOTE: Red Hat say it's only OOB read: https://bugzilla.redhat.com/show_bug.cgi?id=1294425#c1
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2563
 CVE-2015-8683 (The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 ...)
 	{DSA-3467-1 DLA-402-1}
 	- tiff 4.0.6-1 (bug #809021)
@@ -21092,6 +21100,7 @@
 	- tiff3 <removed>
 	NOTE: http://www.openwall.com/lists/oss-security/2015/12/26/7
 	NOTE: SUSE seem to have a fix (disputed): https://bugzilla.novell.com/show_bug.cgi?id=960341
+	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2564
 CVE-2015-7553 [nfnetlink race in NETLINK_NFLOG socket creation]
 	RESERVED
 	- linux <not-affected> (RHEL-specific backport bug)


