[Git][security-tracker-team/security-tracker][master] Add CVE-2019-7663/tiff
Salvatore Bonaccorso
carnil at debian.org
Sat Feb 9 20:31:18 GMT 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
dfcd9a2e by Salvatore Bonaccorso at 2019-02-09T20:30:41Z
Add CVE-2019-7663/tiff
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -28,7 +28,13 @@ CVE-2019-7664 (In elfutils 0.175, a negative-sized memcpy is attempted in elf_cv
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=24084
NOTE: https://sourceware.org/git/?p=elfutils.git;a=commit;h=e65d91d21cb09d83b001fef9435e576ba447db32
CVE-2019-7663 (An Invalid Address dereference was discovered in ...)
- TODO: check
+ - tiff 4.0.10-4
+ [stretch] - tiff <postponed> (Minor issue)
+ - tiff3 <removed>
+ NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2833
+ NOTE: Fixed by: https://gitlab.com/libtiff/libtiff/commit/802d3cbf3043be5dce5317e140ccb1c17a6a2d39
+ NOTE: Same patch as CVE-2018-17000 but different issue. As well different
+ NOTE: issue than CVE-2018-12900.
CVE-2019-7662 (An assertion failure was discovered in ...)
TODO: check
CVE-2019-7661
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dfcd9a2efd26eeebd7ab35c61dc04c32f959dc27
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dfcd9a2efd26eeebd7ab35c61dc04c32f959dc27
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190209/a107b03d/attachment.html>
More information about the debian-security-tracker-commits
mailing list