[Secure-testing-commits] r44324 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun Sep 4 21:03:42 UTC 2016
Author: apo
Date: 2016-09-04 21:03:42 +0000 (Sun, 04 Sep 2016)
New Revision: 44324
Modified:
data/CVE/list
Log:
Clarify status of CVE-2015-8668
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-09-04 21:00:10 UTC (rev 44323)
+++ data/CVE/list 2016-09-04 21:03:42 UTC (rev 44324)
@@ -19860,6 +19860,8 @@
- tiff3 <removed>
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2563
NOTE: Red Hat say it's only OOB read: https://bugzilla.redhat.com/show_bug.cgi?id=1294425#c1
+ NOTE: Red Hat's patch is partially incorrect according to upstream. Issue was also marked as wontfix.
+ NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2563#c4
CVE-2015-8683 (The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 ...)
{DSA-3467-1 DLA-402-1}
- tiff 4.0.6-1 (bug #809021)
More information about the Secure-testing-commits
mailing list