[Secure-testing-commits] r48171 - data/CVE

Wed, 18 Jan 2017 13:33:00 -0800 

Author: anarcat
Date: 2017-01-18 21:32:39 +0000 (Wed, 18 Jan 2017)
New Revision: 48171

Modified:
   data/CVE/list
Log:
remove wheezy no-dsa tags on tiff issues fixed in jessie



Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-01-18 21:26:43 UTC (rev 48170)
+++ data/CVE/list       2017-01-18 21:32:39 UTC (rev 48171)
@@ -31689,7 +31689,6 @@
 CVE-2016-3990 (Heap-based buffer overflow in the horizontalDifference8 
function in ...)
        {DSA-3762-1 DLA-610-1}
        - tiff 4.0.7-1 (bug #836570)
-       [wheezy] - tiff <no-dsa> (Minor issue)
        - tiff3 <removed> (unimportant)
        NOTE: src:tiff3: built binary packages do not contain the TIFF tools
        NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2544
@@ -31913,7 +31912,6 @@
 CVE-2016-3945 (Multiple integer overflows in the (1) cvt_by_strip and (2) 
cvt_by_tile ...)
        {DSA-3762-1 DLA-610-1}
        - tiff 4.0.7-1
-       [wheezy] - tiff <no-dsa> (Minor issue)
        - tiff3 <removed> (unimportant)
        NOTE: src:tiff3: built binary packages do not contain the TIFF tools
        NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2545
@@ -32779,7 +32777,6 @@
        RESERVED
 CVE-2016-3625 (tif_read.c in the tiff2bw tool in LibTIFF 4.0.6 and earlier 
allows ...)
        - tiff 4.0.3-1
-       [wheezy] - tiff <no-dsa> (Minor issue)
        - tiff3 <removed>
        [wheezy] - tiff3 <not-affected> (Does not ship libtiff tools)
        NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2566
@@ -32789,7 +32786,6 @@
 CVE-2016-3624 (The cvtClump function in the rgb2ycbcr tool in LibTIFF 4.0.6 
and ...)
        {DSA-3762-1}
        - tiff 4.0.6-3
-       [wheezy] - tiff <no-dsa> (Minor issue)
        - tiff3 <not-affected> (tiff tools not built)
        NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2568
        NOTE: Upstream marked this duplicate of bug 2569
@@ -32802,7 +32798,6 @@
 CVE-2016-3622 (The fpAcc function in tif_predict.c in the tiff2rgba tool in 
LibTIFF ...)
        {DSA-3762-1}
        - tiff 4.0.7-1 (low; bug #820365)
-       [wheezy] - tiff <no-dsa> (Minor issue)
        - tiff3 <not-affected> (tiff tools not built)
        NOTE: http://www.openwall.com/lists/oss-security/2016/04/07/4
        NOTE: Fixed by: 
https://github.com/vadz/libtiff/commit/92d966a5fcfbdca67957c8c5c47b467aa650b286


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to