[Secure-testing-commits] r50513 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Apr 10 05:11:30 UTC 2017 

Author: carnil
Date: 2017-04-10 05:11:30 +0000 (Mon, 10 Apr 2017)
New Revision: 50513

Modified:
   data/CVE/list
Log:
Add source package annotation for various new tiff issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-10 05:08:31 UTC (rev 50512)
+++ data/CVE/list	2017-04-10 05:11:30 UTC (rev 50513)
@@ -39,26 +39,48 @@
 CVE-2017-7603 (au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a signed ...)
 	TODO: check
 CVE-2017-7602 (LibTIFF 4.0.7 has a signed integer overflow, which might allow remote ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7601 (LibTIFF 4.0.7 has a "shift exponent too large for 64-bit type long" ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7600 (LibTIFF 4.0.7 has an "outside the range of representable values of type ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7599 (LibTIFF 4.0.7 has an "outside the range of representable values of type ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7598 (tif_dirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7597 (tif_dirread.c in LibTIFF 4.0.7 has an "outside the range of ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7596 (LibTIFF 4.0.7 has an "outside the range of representable values of type ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7595 (The JPEGSetupEncode function in tiff_jpeg.c in LibTIFF 4.0.7 allows ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7594 (The OJPEGReadHeaderInfoSecTablesDcTable function in tif_ojpeg.c in ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7593 (tif_read.c in LibTIFF 4.0.7 does not ensure that tif_rawdata is ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-7592 (The putagreytile function in tif_getimage.c in LibTIFF 4.0.7 has a ...)
+	- tiff <unfixed>
+	- tiff3 <removed>
 	TODO: check
 CVE-2017-XXXX [AST-2017-001: Buffer overflow in CDR's set user]
 	- asterisk <unfixed> (bug #859910)

More information about the Secure-testing-commits mailing list