[Secure-testing-commits] r48496 - in data: . CVE
Ola Lundqvist
opal at moszumanska.debian.org
Sat Jan 28 21:12:31 UTC 2017
Author: opal
Date: 2017-01-28 21:12:31 +0000 (Sat, 28 Jan 2017)
New Revision: 48496
Modified:
data/CVE/list
data/dla-needed.txt
Log:
Found some more after triaging.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-28 21:04:20 UTC (rev 48495)
+++ data/CVE/list 2017-01-28 21:12:31 UTC (rev 48496)
@@ -7260,6 +7260,7 @@
CVE-2016-XXXX [heap-based buffer overflow in TIFFFillStrip (tif_read.c)]
- tiff 4.0.7-2 (bug #846837)
[wheezy] - tiff3 <not-affected> (Unreproducible)
+ [wheezy] - tiff 4.0.2-6+deb7u9
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2608
NOTE: https://github.com/vadz/libtiff/commit/9a72a69e035ee70ff5c41541c8c61cd97990d018
CVE-2016-XXXX [tiffcrop: divide-by-zero in readSeparateStripsIntoBuffer when BitsPerSample is missing]
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-01-28 21:04:20 UTC (rev 48495)
+++ data/dla-needed.txt 2017-01-28 21:12:31 UTC (rev 48496)
@@ -92,6 +92,8 @@
--
slurm-llnl
--
+svgsalamander
+--
tcpdump
NOTE: I can prepare packages for wheezy as well if you need, but I'm not yet
NOTE: familiar with how to get them uploaded to wheezy-lts.
More information about the Secure-testing-commits
mailing list