[Secure-testing-commits] r53082 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Jul 1 19:43:09 UTC 2017
Author: carnil
Date: 2017-07-01 19:43:09 +0000 (Sat, 01 Jul 2017)
New Revision: 53082
Modified:
data/CVE/list
Log:
Two CVEs fixed with 4.0.8-3 upload of tiff to unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-01 19:41:03 UTC (rev 53081)
+++ data/CVE/list 2017-07-01 19:43:09 UTC (rev 53082)
@@ -60,7 +60,7 @@
CVE-2017-10689
RESERVED
CVE-2017-10688 (In LibTIFF 4.0.8, there is a assertion abort in the ...)
- - tiff <unfixed> (bug #866611)
+ - tiff 4.0.8-3 (bug #866611)
- tiff3 <removed>
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2712
NOTE: Fixed by: https://github.com/vadz/libtiff/commit/6173a57d39e04d68b139f8c1aa499a24dbe74ba1
@@ -426,7 +426,7 @@
NOTE: to see this as an issue in libjbig itself.
TODO: wait for futher development on upstream
CVE-2017-9936 (In LibTIFF 4.0.8, there is a memory leak in tif_jbig.c. A crafted TIFF ...)
- - tiff <unfixed> (bug #866113)
+ - tiff 4.0.8-3 (bug #866113)
- tiff3 <removed>
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2706
NOTE: Fixed by: https://github.com/vadz/libtiff/commit/fe8d7165956b88df4837034a9161dc5fd20cf67a
More information about the Secure-testing-commits
mailing list