On 2015/12/29 04:05, Sevan / Venture37 wrote: > graphics/giflib https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2015-7555
no upstream fix, redhat are "CLOSED WONTFIX".. fortunately it's only in the giffix binary and not the library. > graphics/tiff CVE-2015-7554 CVE-2015-8668 I don't think this is fixed upstream either.