[Git][security-tracker-team/security-tracker][master] Reserve DLA-1680-1 for tiff

Sun, 17 Feb 2019 22:22:31 -0800 

Brian May pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3d296da5 by Brian May at 2019-02-18T06:20:47Z
Reserve DLA-1680-1 for tiff

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[18 Feb 2019] DLA-1680-1 tiff - security update
+       {CVE-2018-17000 CVE-2018-19210 CVE-2019-7663}
+       [jessie] - tiff 4.0.3-12.3+deb8u8
 [16 Feb 2019] DLA-1679-1 php5 - security update
        [jessie] - php5 5.6.40+dfsg-0+deb8u1
 [16 Feb 2019] DLA-1678-1 thunderbird - security update


=====================================
data/dla-needed.txt
=====================================
@@ -133,14 +133,6 @@ symfony (Roberto C. Sánchez)
 systemd
   NOTE: 20181119: tmpfiles.d issues remain, fix invasive, consider backporting 
all of tmpfiles.c (anarcat)
 --
-tiff (Brian May)
-  NOTE: CVE-2018-19210: 
https://gitlab.com/libtiff/libtiff/commit/d0a842c5dbad2609aed43c701a12ed12461d3405
-  NOTE: CVE-2018-19210: 
https://gitlab.com/libtiff/libtiff/commit/38ede78b13810ff0fa8e61f86ef9aa0ab2964668
-  NOTE: CVE-2018-5360: 20181219: asked for cve update as duplicate of 
CVE-2014-8127 (hle)
-  NOTE: CVE-2018-18661: Easy to patch, but unable to reproduce the error. (bam)
-  NOTE: CVE-2018-18661: Not possible to prove it fixes the specified 
vulnerability. (bam)
-  NOTE: CVE-2018-18661: See thread starting at 
https://lists.debian.org/debian-lts/2018/11/msg00033.html (bam)
---
 uriparser (Thorsten Alteholz)
   NOTE: 20190210: looking for testsuite package
 --



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3d296da5ed80bbe0b17c6ece33a454895b20c846

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3d296da5ed80bbe0b17c6ece33a454895b20c846
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to