[Secure-testing-commits] r48500 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jan 28 21:22:26 UTC 2017
Author: carnil
Date: 2017-01-28 21:22:26 +0000 (Sat, 28 Jan 2017)
New Revision: 48500
Modified:
data/CVE/list
Log:
Sort entries by source package name
I'm not sure this addition of "[wheezy] - tiff 4.0.2-6+deb7u9" in the
previous commit is correct, but just do a reshuffling of the lines here.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-28 21:22:16 UTC (rev 48499)
+++ data/CVE/list 2017-01-28 21:22:26 UTC (rev 48500)
@@ -7259,8 +7259,9 @@
NOTE: http://www.openwall.com/lists/oss-security/2014/11/03/5
CVE-2016-XXXX [heap-based buffer overflow in TIFFFillStrip (tif_read.c)]
- tiff 4.0.7-2 (bug #846837)
+ [wheezy] - tiff 4.0.2-6+deb7u9
+ - tiff3 <removed>
[wheezy] - tiff3 <not-affected> (Unreproducible)
- [wheezy] - tiff 4.0.2-6+deb7u9
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2608
NOTE: https://github.com/vadz/libtiff/commit/9a72a69e035ee70ff5c41541c8c61cd97990d018
CVE-2016-XXXX [tiffcrop: divide-by-zero in readSeparateStripsIntoBuffer when BitsPerSample is missing]
More information about the Secure-testing-commits
mailing list