[Secure-testing-commits] r50030 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-03-25 05:53:11 +0000 (Sat, 25 Mar 2017)
New Revision: 50030

Modified:
   data/CVE/list
Log:
Add note about CVE-2016-10271/tiff

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-03-25 05:46:58 UTC (rev 50029)
+++ data/CVE/list	2017-03-25 05:53:11 UTC (rev 50030)
@@ -17,7 +17,7 @@
 	NOTE: https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/
 	NOTE: https://github.com/vadz/libtiff/commit/9657bbe3cdce4aaa90e07d50c1c70ae52da0ba6a
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2620
-	NOTE: Duplicate assignment of CVE-2016-10092
+	NOTE: Duplicate assignment of CVE-2016-10092 (MITRE contacted)
 CVE-2016-10270 (LibTIFF 4.0.7 allows remote attackers to cause a denial of service ...)
 	- tiff 4.0.7-2 (bug #846837)
 	[wheezy] - tiff 4.0.2-6+deb7u9