[Secure-testing-commits] r44316 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Sep 4 19:23:05 UTC 2016
Author: carnil
Date: 2016-09-04 19:23:05 +0000 (Sun, 04 Sep 2016)
New Revision: 44316
Modified:
data/CVE/list
Log:
Add expanded note
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-04 19:19:19 UTC (rev 44315)
+++ data/CVE/list 2016-09-04 19:23:05 UTC (rev 44316)
@@ -131590,6 +131590,14 @@
- tiff <unfixed> (unimportant)
- tiff3 <unfixed> (unimportant)
NOTE: fixed by http://bugzilla.maptools.org/show_bug.cgi?id=2209
+ NOTE: The code in OJPEGPostDecode still reads as
+ NOTE: 889 if (sp->write_curstrile%tif->tif_dir.td_stripsperimage==0)
+ NOTE: 890 {
+ NOTE: 891 assert(sp->libjpeg_session_active!=0);
+ NOTE: 892 OJPEGLibjpegSessionAbort(tif);
+ NOTE: 893 sp->writeheader_done=0;
+ NOTE: 894 }
+ NOTE: in 4.0.6-1
TODO: Ask apo about above note, id=2209 patch does not seem applied to 4.0.6-1
CVE-2010-2595 (The TIFFYCbCrtoRGB function in LibTIFF 3.9.0 and 3.9.2, as used in ...)
{DSA-2552-1}
More information about the Secure-testing-commits
mailing list