[Git][security-tracker-team/security-tracker][master] lts: tiff issues postponed/ignored
Emilio Pozuelo Monfort (@pochu)
pochu at debian.org
Tue Aug 26 12:03:29 BST 2025
Emilio Pozuelo Monfort pushed to branch master at Debian Security Tracker / security-tracker
Commits:
e0392cd5 by Emilio Pozuelo Monfort at 2025-08-26T13:02:25+02:00
lts: tiff issues postponed/ignored
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1930,6 +1930,7 @@ CVE-2025-9165 (A flaw has been found in LibTIFF 4.7.0. This affects the function
- tiff 4.7.0-4 (bug #1111878)
[trixie] - tiff <no-dsa> (Minor issue)
[bookworm] - tiff <no-dsa> (Minor issue)
+ [bullseye] - tiff <ignored> (No security impact, CVE disputed)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/728
NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/747
NOTE: https://gitlab.com/libtiff/libtiff/-/commit/ed141286a37f6e5ddafb5069347ff5d587e7a4e0
@@ -3176,6 +3177,7 @@ CVE-2025-8961 (A weakness has been identified in LibTIFF 4.7.0. This affects the
- tiff <unfixed> (bug #1111317)
[trixie] - tiff <no-dsa> (Minor issue)
[bookworm] - tiff <no-dsa> (Minor issue)
+ [bullseye] - tiff <postponed> (Minor issue)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/721
CVE-2025-8960 (A vulnerability has been found in Campcodes Online Flight Booking Mana ...)
NOT-FOR-US: Campcodes
@@ -6895,6 +6897,7 @@ CVE-2024-13978 (A vulnerability was found in LibTIFF up to 4.7.0. It has been de
- tiff 4.7.0-4 (bug #1111323)
[trixie] - tiff <no-dsa> (Minor issue)
[bookworm] - tiff <no-dsa> (Minor issue)
+ [bullseye] - tiff <postponed> (Minor issue)
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/649
NOTE: https://gitlab.com/libtiff/libtiff/-/issues/650
NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/667
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0392cd5f1bac27c0054b17eecb14e8298582687
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/e0392cd5f1bac27c0054b17eecb14e8298582687
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250826/bcc4ceda/attachment.htm>
More information about the debian-security-tracker-commits
mailing list