[Secure-testing-commits] r50026 - data/CVE

Salvatore Bonaccorso Fri, 24 Mar 2017 22:35:09 -0700

Author: carnil
Date: 2017-03-25 05:34:36 +0000 (Sat, 25 Mar 2017)
New Revision: 50026


Modified:
   data/CVE/list
Log:
Add CVE-2016-10268/tiff

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-03-25 05:32:43 UTC (rev 50025)
+++ data/CVE/list       2017-03-25 05:34:36 UTC (rev 50026)
@@ -19,7 +19,10 @@
 CVE-2016-10269 (LibTIFF 4.0.7 allows remote attackers to cause a denial of 
service ...)
        TODO: check
 CVE-2016-10268 (tools/tiffcp.c in LibTIFF 4.0.7 allows remote attackers to 
cause a ...)
-       TODO: check
+       - tiff 4.0.7-2
+       NOTE: 
https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-heap-based-buffer-overflow/
+       NOTE: 
https://github.com/vadz/libtiff/commit/5397a417e61258c69209904e652a1f409ec3b9df
+       NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2598
 CVE-2016-10267 (LibTIFF 4.0.7 allows remote attackers to cause a denial of 
service ...)
        - tiff 4.0.7-2
        NOTE: 
https://blogs.gentoo.org/ago/2017/01/01/libtiff-multiple-divide-by-zero/


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r50026 - data/CVE

Reply via email to