[Secure-testing-commits] r50685 - data/CVE
László Böszörményi
gcs at moszumanska.debian.org
Sat Apr 15 06:44:49 UTC 2017
Author: gcs
Date: 2017-04-15 06:44:49 +0000 (Sat, 15 Apr 2017)
New Revision: 50685
Modified:
data/CVE/list
Log:
tiff/CVE-2017-7602 fixed in unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-14 22:08:38 UTC (rev 50684)
+++ data/CVE/list 2017-04-15 06:44:49 UTC (rev 50685)
@@ -700,7 +700,7 @@
CVE-2017-7603 (au_channel.h in HE-AAC+ Codec (aka libaacplus) 2.0.2 has a signed ...)
NOT-FOR-US: libaacplus
CVE-2017-7602 (LibTIFF 4.0.7 has a signed integer overflow, which might allow remote ...)
- - tiff <unfixed>
+ - tiff 4.0.7-6
- tiff3 <removed>
NOTE: https://github.com/vadz/libtiff/commit/66e7bd59520996740e4df5495a830b42fae48bc4
NOTE: https://blogs.gentoo.org/ago/2017/04/01/libtiff-multiple-ubsan-crashes
More information about the Secure-testing-commits
mailing list