[Secure-testing-commits] r58207 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Dec 2 06:21:38 UTC 2017
Author: carnil
Date: 2017-12-02 06:21:38 +0000 (Sat, 02 Dec 2017)
New Revision: 58207
Modified:
data/CVE/list
Log:
Mark CVE-2017-17095 as unimportant
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-02 06:20:28 UTC (rev 58206)
+++ data/CVE/list 2017-12-02 06:21:38 UTC (rev 58207)
@@ -617,9 +617,10 @@
NOTE: https://github.com/WordPress/WordPress/commit/67d03a98c2cae5f41843c897f206adde299b0509
NOTE: https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
CVE-2017-17095 [heap-based buffer overflow in the pal2rgb tool]
- - tiff <unfixed>
- - tiff3 <removed>
+ - tiff <unfixed> (unimportant)
+ - tiff3 <removed> (unimportant)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2750
+ NOTE: Crash in CLI tool not treated as a security issue
CVE-2017-17088
RESERVED
CVE-2017-17087 (fileio.c in Vim prior to 8.0.1263 sets the group ownership of a .swp ...)
More information about the Secure-testing-commits
mailing list