[Git][security-tracker-team/security-tracker][master] Pinpoint upstream tag information for two tiff issues

[Salvatore Bonaccorso (@carnil)]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f0c311c8 by Salvatore Bonaccorso at 2025-09-22T19:25:15+02:00
Pinpoint upstream tag information for two tiff issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -18620,15 +18620,15 @@ CVE-2025-8177 (A vulnerability was found in LibTIFF 
up to 4.7.0. It has been rat
        - tiff 4.7.1-1 (unimportant)
        NOTE: https://gitlab.com/libtiff/libtiff/-/issues/715
        NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/737
-       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/e8de4dc1f923576dce9d625caeebd93f9db697e1
 (v4.7.1)
+       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/e8de4dc1f923576dce9d625caeebd93f9db697e1
 (v4.7.1rc1)
        NOTE: Crash in CLI tool, no security impact
 CVE-2025-8176 (A vulnerability was found in LibTIFF up to 4.7.0. It has been 
declared ...)
        - tiff 4.7.1-1 (unimportant)
        NOTE: https://gitlab.com/libtiff/libtiff/-/issues/707
        NOTE: https://gitlab.com/libtiff/libtiff/-/merge_requests/727
-       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/ce46f002eca4148497363f80fab33f9396bcbeda
 (v4.7.1)
-       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/ecc4ddbf1f0fed7957d1e20361e37f01907898e0
 (v4.7.1)
-       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/78397815cdf7e9ad79943e00c3f06a6df9bf45c5
 (v4.7.1)
+       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/ce46f002eca4148497363f80fab33f9396bcbeda
 (v4.7.1rc1)
+       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/ecc4ddbf1f0fed7957d1e20361e37f01907898e0
 (v4.7.1rc1)
+       NOTE: Fixed by: 
https://gitlab.com/libtiff/libtiff/-/commit/78397815cdf7e9ad79943e00c3f06a6df9bf45c5
 (v4.7.1rc1)
        NOTE: Crash in CLI tool, no security impact
 CVE-2025-8197
        REJECTED



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0c311c87bf95e8713848a0a9051f02019cf4c8a

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/f0c311c87bf95e8713848a0a9051f02019cf4c8a
You're receiving this email because of your account on salsa.debian.org.



_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits