[Secure-testing-commits] r48167 - data/CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Wed Jan 18 20:55:14 UTC 2017
Author: anarcat
Date: 2017-01-18 20:55:13 +0000 (Wed, 18 Jan 2017)
New Revision: 48167
Modified:
data/CVE/list
Log:
note that CVE-2016-10095 seenms already fixed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-18 20:25:04 UTC (rev 48166)
+++ data/CVE/list 2017-01-18 20:55:13 UTC (rev 48167)
@@ -1482,7 +1482,10 @@
CVE-2016-10095 [stack-based buffer overflow in _TIFFVGetField (tif_dir.c)]
RESERVED
- tiff <unfixed> (bug #850316)
+ [wheezy] - tiffy 4.0.2-6+deb7u7
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2625
+ NOTE: probably preemptively fixed in 4.0.2-6+deb7u7 wheezy upload, as test case doesn't trigger issue
+ NOTE: similar to CVE-2015-7554 and CVE-2016-5318
CVE-2016-10094 [off-by-one error in tiff2pdf]
RESERVED
{DSA-3762-1}
More information about the Secure-testing-commits
mailing list