[Secure-testing-commits] r45593 - data/CVE

Tue Oct 25 16:54:15 UTC 2016

Author: nluedtke-guest
Date: 2016-10-25 16:54:15 +0000 (Tue, 25 Oct 2016)
New Revision: 45593

Modified:
   data/CVE/list
Log:
Add CVE-2016-5652/tiff, CVE-2016-833{1,8}/tiff

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2016-10-25 16:08:13 UTC (rev 45592)
+++ data/CVE/list	2016-10-25 16:54:15 UTC (rev 45593)
@@ -1525,6 +1525,8 @@
 	NOTE: http://www.talosintelligence.com/reports/TALOS-2016-0206/
 CVE-2016-8338
 	RESERVED
+	- tiff <unfixed>
+	NOTE: http://blog.talosintel.com/2016/10/LibTIFF-Code-Execution.html
 CVE-2016-8337
 	RESERVED
 CVE-2016-8336
@@ -1542,6 +1544,8 @@
 	NOTE: https://github.com/uclouvain/openjpeg/pull/820
 CVE-2016-8331
 	RESERVED
+	- tiff <unfixed>
+	NOTE: http://blog.talosintel.com/2016/10/LibTIFF-Code-Execution.html
 CVE-2016-8330
 	RESERVED
 CVE-2016-8329
@@ -10092,6 +10096,9 @@
 	NOT-FOR-US: Misys
 CVE-2016-5652
 	RESERVED
+	- tiff <unfixed>
+	NOTE: http://blog.talosintel.com/2016/10/LibTIFF-Code-Execution.html
+	NOTE: https://github.com/vadz/libtiff/commit/b5d6803f0898e931cf772d3d0755704ab8488e63
 CVE-2016-5651
 	RESERVED
 CVE-2016-5650 (ZModo ZP-NE14-S and ZP-IBH-13W devices do not enforce a WPA2 ...)


