Hugo Lefeuvre pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f48e7d45 by Hugo Lefeuvre at 2018-04-15T22:27:00-04:00
Claim DLA 1347 and 1346 for tiff and tiff3 updates

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
--- a/data/DLA/list
+++ b/data/DLA/list
@@ -1,3 +1,9 @@
+[15 Apr 2018] DLA-1347-1 tiff3 - security update
+       {CVE-2018-7456}
+       [wheezy] - tiff3 3.9.6-11+deb7u10
+[15 Apr 2018] DLA-1346-1 tiff - security update
+       {CVE-2018-7456}
+       [wheezy] - tiff 4.0.2-6+deb7u19
 [15 Apr 2018] DLA-1345-1 perl - security update
        {CVE-2018-6913}
        [wheezy] - perl 5.14.2-21+deb7u6


=====================================
data/dla-needed.txt
=====================================
--- a/data/dla-needed.txt
+++ b/data/dla-needed.txt
@@ -83,9 +83,10 @@ sharutils (Abhijith PA)
 slurm-llnl (Thorsten Alteholz)
 --
 tiff (Hugo Lefeuvre)
-  NOTE: 20180306: incomplete fix of CVE-2017-18013, see CVE-2018-7456.
+  NOTE: 20180415: CVE-2018-8905 not reproducible in Wheezy/Jessie/Stretch 
(Buster only),
+  NOTE: I'm still investigating the issue before I mark them not-affected.
 --
-tiff3
+tiff3 (Hugo Lefeuvre)
 --
 wireshark (Thorsten Alteholz)
 --



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f48e7d45fbd9c7884b00ddfaf8c926aa7e8cdc8a

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f48e7d45fbd9c7884b00ddfaf8c926aa7e8cdc8a
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to