[Secure-testing-commits] r44317 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Sep 4 19:25:12 UTC 2016
Author: carnil
Date: 2016-09-04 19:25:12 +0000 (Sun, 04 Sep 2016)
New Revision: 44317
Modified:
data/CVE/list
Log:
Mark remaining src:tiff3 item which were marked as <unfixed> as <removed>
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-04 19:23:05 UTC (rev 44316)
+++ data/CVE/list 2016-09-04 19:25:12 UTC (rev 44317)
@@ -52818,7 +52818,7 @@
RESERVED
{DSA-3273-1 DLA-221-1}
- tiff 4.0.3-12.1 (bug #776185)
- - tiff3 <unfixed>
+ - tiff3 <removed>
NOTE: Advisory: http://www.conostix.com/pub/adv/CVE-2014-8129-LibTIFF-Out-of-bounds_Reads_and_Writes.txt
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2487 (tiff2pdf)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2488 (tiff2pdf)
@@ -52827,7 +52827,7 @@
RESERVED
{DSA-3273-1 DLA-221-1}
- tiff 4.0.3-12.3 (bug #776185)
- - tiff3 <unfixed>
+ - tiff3 <removed>
NOTE: Advisory: http://www.conostix.com/pub/adv/CVE-2014-8128-LibTIFF-Out-of-bounds_Writes.txt
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2489 (thumbnail)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2490 (tiffdither)
@@ -131588,7 +131588,7 @@
NOTE: may have been fixed earlier
CVE-2010-2596 (The OJPEGPostDecode function in tif_ojpeg.c in LibTIFF 3.9.0 and ...)
- tiff <unfixed> (unimportant)
- - tiff3 <unfixed> (unimportant)
+ - tiff3 <removed> (unimportant)
NOTE: fixed by http://bugzilla.maptools.org/show_bug.cgi?id=2209
NOTE: The code in OJPEGPostDecode still reads as
NOTE: 889 if (sp->write_curstrile%tif->tif_dir.td_stripsperimage==0)
More information about the Secure-testing-commits
mailing list