[Secure-testing-commits] r50985 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Mon Apr 24 09:49:31 UTC 2017
Author: apo
Date: 2017-04-24 09:49:31 +0000 (Mon, 24 Apr 2017)
New Revision: 50985
Modified:
data/CVE/list
Log:
CVE-2017-7592,tiff3: Wheezy is not affected
The affected function is DECLAREContigPutFunc(putgreytile)
in this version. However there is no left-shift hence no undefined behavior.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-24 09:23:32 UTC (rev 50984)
+++ data/CVE/list 2017-04-24 09:49:31 UTC (rev 50985)
@@ -1423,6 +1423,7 @@
{DLA-911-1}
- tiff 4.0.7-6 (bug #859998)
- tiff3 <removed>
+ [wheezy] - tiff3 <not-affected> (vulnerable code not present)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2658
CVE-2017-7617 (Remote code execution can occur in Asterisk Open Source 13.x before ...)
- asterisk 1:13.14.1~dfsg-1 (bug #859910)
More information about the Secure-testing-commits
mailing list