Author: carnil
Date: 2013-08-15 07:24:01 +0000 (Thu, 15 Aug 2013)
New Revision: 23325
Modified:
data/CVE/list
Log:
update entries for CVE-2013-4243 and CVE-2013-4244 in tiff, part of external
check
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-15 07:21:09 UTC (rev 23324)
+++ data/CVE/list 2013-08-15 07:24:01 UTC (rev 23325)
@@ -1901,10 +1901,15 @@
RESERVED
CVE-2013-4245
RESERVED
-CVE-2013-4244
+CVE-2013-4244 [gif2tiff: OOB Write in LZW decompressor]
RESERVED
-CVE-2013-4243
+ - tiff <unfixed>
+ - tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF
tools)
+CVE-2013-4243 [gif2tiff: possible heap-based buffer overflow in readgifimage()]
RESERVED
+ - tiff <unfixed>
+ - tiff3 <not-affected> (The tiff3 source package doesn't build the TIFF
tools)
+ TODO: check
CVE-2013-4242 [the Yarom/Falkner flush+reload side-channel attack on RSA
secret keys]
RESERVED
{DSA-2731-1 DSA-2730-1}
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
