[Secure-testing-commits] r48171 - data/CVE

Antoine Beaupré anarcat at moszumanska.debian.org
Wed Jan 18 21:32:39 UTC 2017 

Author: anarcat
Date: 2017-01-18 21:32:39 +0000 (Wed, 18 Jan 2017)
New Revision: 48171

Modified:
   data/CVE/list
Log:
remove wheezy no-dsa tags on tiff issues fixed in jessie



Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-01-18 21:26:43 UTC (rev 48170)
+++ data/CVE/list	2017-01-18 21:32:39 UTC (rev 48171)
@@ -31689,7 +31689,6 @@
 CVE-2016-3990 (Heap-based buffer overflow in the horizontalDifference8 function in ...)
 	{DSA-3762-1 DLA-610-1}
 	- tiff 4.0.7-1 (bug #836570)
-	[wheezy] - tiff <no-dsa> (Minor issue)
 	- tiff3 <removed> (unimportant)
 	NOTE: src:tiff3: built binary packages do not contain the TIFF tools
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2544
@@ -31913,7 +31912,6 @@
 CVE-2016-3945 (Multiple integer overflows in the (1) cvt_by_strip and (2) cvt_by_tile ...)
 	{DSA-3762-1 DLA-610-1}
 	- tiff 4.0.7-1
-	[wheezy] - tiff <no-dsa> (Minor issue)
 	- tiff3 <removed> (unimportant)
 	NOTE: src:tiff3: built binary packages do not contain the TIFF tools
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2545
@@ -32779,7 +32777,6 @@
 	RESERVED
 CVE-2016-3625 (tif_read.c in the tiff2bw tool in LibTIFF 4.0.6 and earlier allows ...)
 	- tiff 4.0.3-1
-	[wheezy] - tiff <no-dsa> (Minor issue)
 	- tiff3 <removed>
 	[wheezy] - tiff3 <not-affected> (Does not ship libtiff tools)
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2566
@@ -32789,7 +32786,6 @@
 CVE-2016-3624 (The cvtClump function in the rgb2ycbcr tool in LibTIFF 4.0.6 and ...)
 	{DSA-3762-1}
 	- tiff 4.0.6-3
-	[wheezy] - tiff <no-dsa> (Minor issue)
 	- tiff3 <not-affected> (tiff tools not built)
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2568
 	NOTE: Upstream marked this duplicate of bug 2569
@@ -32802,7 +32798,6 @@
 CVE-2016-3622 (The fpAcc function in tif_predict.c in the tiff2rgba tool in LibTIFF ...)
 	{DSA-3762-1}
 	- tiff 4.0.7-1 (low; bug #820365)
-	[wheezy] - tiff <no-dsa> (Minor issue)
 	- tiff3 <not-affected> (tiff tools not built)
 	NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/4
 	NOTE: Fixed by: https://github.com/vadz/libtiff/commit/92d966a5fcfbdca67957c8c5c47b467aa650b286

More information about the Secure-testing-commits mailing list