[Secure-testing-commits] r58207 - data/CVE

Salvatore Bonaccorso Fri, 01 Dec 2017 22:21:54 -0800

Author: carnil
Date: 2017-12-02 06:21:38 +0000 (Sat, 02 Dec 2017)
New Revision: 58207


Modified:
   data/CVE/list
Log:
Mark CVE-2017-17095 as unimportant

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-12-02 06:20:28 UTC (rev 58206)
+++ data/CVE/list       2017-12-02 06:21:38 UTC (rev 58207)
@@ -617,9 +617,10 @@
        NOTE: 
https://github.com/WordPress/WordPress/commit/67d03a98c2cae5f41843c897f206adde299b0509
        NOTE: 
https://wordpress.org/news/2017/11/wordpress-4-9-1-security-and-maintenance-release/
 CVE-2017-17095 [heap-based buffer overflow in the pal2rgb tool]
-       - tiff <unfixed>
-       - tiff3 <removed>
+       - tiff <unfixed> (unimportant)
+       - tiff3 <removed> (unimportant)
        NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2750
+       NOTE: Crash in CLI tool not treated as a security issue
 CVE-2017-17088
        RESERVED
 CVE-2017-17087 (fileio.c in Vim prior to 8.0.1263 sets the group ownership of 
a .swp ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r58207 - data/CVE

Reply via email to