[Secure-testing-commits] r46468 - data/CVE

security tracker role sectracker at moszumanska.debian.org
Tue Nov 22 21:10:13 UTC 2016 

Author: sectracker
Date: 2016-11-22 21:10:13 +0000 (Tue, 22 Nov 2016)
New Revision: 46468

Modified:
   data/CVE/list
Log:
automatic update

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-11-22 21:08:37 UTC (rev 46467)
+++ data/CVE/list	2016-11-22 21:10:13 UTC (rev 46468)
@@ -770,6 +770,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2016/11/12/3
 CVE-2016-9297 [libtiff/tif_dirread.c read outside buffer in _TIFFPrintField()]
 	RESERVED
+	{DLA-716-1}
 	- tiff 4.0.7-1 (bug #844226)
 	- tiff3 <removed>
 	[wheezy] - tiff3 <not-affected> (Unreproducible)
@@ -783,6 +784,7 @@
 	NOTE: Fix in 4.0.7 is complete.
 	NOTE: Patch CVE-2016-9448: https://github.com/vadz/libtiff/commit/89406285f318ffad27af4b200204394b2ee6ba5e
 CVE-2016-9532 [tiffcrop: heap buffer overflow via writeBufferToSeparateStrips]
+	{DLA-716-1}
 	- tiff 4.0.7-1 (bug #844057)
 	[jessie] - tiff <no-dsa> (Minor issue)
 	- tiff3 <removed>
@@ -820,6 +822,7 @@
 	NOTE: Same commit as for CVE-2016-9276. Needs the dwarf_macro5.c part of the commit.
 CVE-2016-9273 [libtiff heap overflow]
 	RESERVED
+	{DLA-716-1}
 	- tiff 4.0.7-1 (bug #844013)
 	- tiff3 <removed>
 	[wheezy] - tiff3 <not-affected> (Unreproducible)
@@ -1218,7 +1221,7 @@
 	RESERVED
 CVE-2016-9119 [XSS in GUI editor's link dialogue]
 	RESERVED
-	{DSA-3715-1}
+	{DSA-3715-1 DLA-717-1}
 	- moin <unfixed> (bug #844338)
 	NOTE: Fixed by: http://hg.moinmo.in/moin/1.9/rev/3bddf075fdbd
 CVE-2016-9118 (Heap Buffer Overflow (WRITE of size 4) in function pnmtoimage of ...)
@@ -7210,7 +7213,7 @@
 CVE-2016-7147
 	RESERVED
 CVE-2016-7146 (MoinMoin 1.9.8 allows remote attackers to conduct "JavaScript ...)
-	{DSA-3715-1}
+	{DSA-3715-1 DLA-717-1}
 	- moin <unfixed> (bug #844340)
 	NOTE: Fixed by: http://hg.moinmo.in/moin/1.9/rev/1563d6db198c
 	NOTE: https://www.curesec.com/blog/article/blog/MoinMoin-198-XSS-175.html
@@ -27516,6 +27519,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2016/11/16/1
 CVE-2016-1248 [(neo)vim arbitrary command execution via modelines]
 	RESERVED
+	{DSA-3722-1 DLA-718-1}
 	- vim 2:8.0.0095-1
 	- neovim 0.1.6-4
 	NOTE: Fixed by: https://github.com/vim/vim/commit/d0b5138ba4bccff8a744c99836041ef6322ed39a

More information about the Secure-testing-commits mailing list