Author: apo Date: 2017-04-24 09:49:31 +0000 (Mon, 24 Apr 2017) New Revision: 50985
Modified: data/CVE/list Log: CVE-2017-7592,tiff3: Wheezy is not affected The affected function is DECLAREContigPutFunc(putgreytile) in this version. However there is no left-shift hence no undefined behavior. Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-04-24 09:23:32 UTC (rev 50984) +++ data/CVE/list 2017-04-24 09:49:31 UTC (rev 50985) @@ -1423,6 +1423,7 @@ {DLA-911-1} - tiff 4.0.7-6 (bug #859998) - tiff3 <removed> + [wheezy] - tiff3 <not-affected> (vulnerable code not present) NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2658 CVE-2017-7617 (Remote code execution can occur in Asterisk Open Source 13.x before ...) - asterisk 1:13.14.1~dfsg-1 (bug #859910) _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits