Author: anarcat Date: 2017-10-24 20:19:28 +0000 (Tue, 24 Oct 2017) New Revision: 56943
Modified: data/CVE/list data/dla-needed.txt Log: LTS: unclaim tiff, update status (CVE-2017-11613 NOTABUG?) Modified: data/CVE/list =================================================================== --- data/CVE/list 2017-10-24 20:12:05 UTC (rev 56942) +++ data/CVE/list 2017-10-24 20:19:28 UTC (rev 56943) @@ -11734,6 +11734,7 @@ - tiff <unfixed> (bug #869823) - tiff3 <removed> NOTE: https://gist.github.com/dazhouzhou/1a3b7400547f23fe316db303ab9b604f + NOTE: RedHat marked this NOTABUG: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-11613 CVE-2017-11612 (In Joomla! before 3.7.4, inadequate filtering of potentially malicious ...) NOT-FOR-US: Joomla! CVE-2016-10401 (ZyXEL PK5001Z devices have zyad5001 as the su password, which makes it ...) Modified: data/dla-needed.txt =================================================================== --- data/dla-needed.txt 2017-10-24 20:12:05 UTC (rev 56942) +++ data/dla-needed.txt 2017-10-24 20:19:28 UTC (rev 56943) @@ -138,9 +138,11 @@ NOTE: https://sourceforge.net/p/sox/bugs/296/ NOTE: 2017-09-01: pinged upstream (Markus) -- -tiff (anarcat) +tiff + NOTE: no upstream fix, CVE-2017-11613 "not a bug" according to RH -- anarcat 2017-10-24 -- -tiff3 (anarcat) +tiff3 + NOTE: no upstream fix, CVE-2017-11613 "not a bug" according to RH -- anarcat 2017-10-24 -- tomcat7 (Roberto C. Sánchez) -- _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits