[Secure-testing-commits] r48000 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Jan 13 19:04:36 UTC 2017
Author: carnil
Date: 2017-01-13 19:04:35 +0000 (Fri, 13 Jan 2017)
New Revision: 48000
Modified:
data/CVE/list
Log:
Add note for CVE-2016-3625
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-13 18:56:39 UTC (rev 47999)
+++ data/CVE/list 2017-01-13 19:04:35 UTC (rev 48000)
@@ -32064,6 +32064,8 @@
[wheezy] - tiff3 <not-affected> (Does not ship libtiff tools)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2566
NOTE: Not reproducible with jessie and above, marking the version in jessie as fixed
+ NOTE: CVE probably should/needs to be rejected, since upstream is as well unable to
+ NOTE: reproduce the issue. Might have been a problem on reporter from id=2566
CVE-2016-3624 (The cvtClump function in the rgb2ycbcr tool in LibTIFF 4.0.6 and ...)
- tiff 4.0.6-3
[wheezy] - tiff <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list