[Secure-testing-commits] r47799 - data/CVE
László Böszörményi
gcs at moszumanska.debian.org
Sat Jan 7 08:48:45 UTC 2017
Author: gcs
Date: 2017-01-07 08:48:45 +0000 (Sat, 07 Jan 2017)
New Revision: 47799
Modified:
data/CVE/list
Log:
Fix tiff CVE-2016-3622 link and add fixing commit
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-07 06:41:48 UTC (rev 47798)
+++ data/CVE/list 2017-01-07 08:48:45 UTC (rev 47799)
@@ -31770,7 +31770,8 @@
[jessie] - tiff <no-dsa> (Minor issue)
[wheezy] - tiff <no-dsa> (Minor issue)
- tiff3 <not-affected> (tiff tools not built)
- NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/5
+ NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/4
+ NOTE: Fixed by: https://github.com/vadz/libtiff/commit/92d966a5fcfbdca67957c8c5c47b467aa650b286
CVE-2016-3621 (The LZWEncode function in tif_lzw.c in the bmp2tiff tool in LibTIFF ...)
{DLA-693-1}
- tiff <unfixed> (low; bug #820364)
More information about the Secure-testing-commits
mailing list