Summary: | <media-libs/tiff-4.0.9: denial of service during a tiff2pdf invocation. (CVE-2017-12944) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Aleksandr Wagner (Kivak) <alwag> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | normal | CC: | graphics+disabled, nobrowser |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
See Also: | http://bugzilla.maptools.org/show_bug.cgi?id=2725 | ||
Whiteboard: | A3 [noglsa cve] | ||
Package list: | Runtime testing required: | --- |
Description
Aleksandr Wagner (Kivak)
2017-08-21 06:16:03 UTC
This is already dealt with, at least SLOT 0 is clean. No idea about SLOT 3. Package already cleaned from tree: Keywords for media-libs/tiff: commit ebfefcea | a | | | m | | | d x | | | 6 8 | | | 4 6 | u | | a a a p s | | | n | | l m r i p h m s p f m f | e u s | r | p d a m a p c x p 6 3 a b i b | a s l | e | h 6 r 6 6 p 6 8 p 8 9 s r s p s | p e o | p | a 4 m 4 4 c 4 6 a k 0 h c d s d | i d t | o ---------+---------------------------------+-------+------- 3.9.7-r1 | ~ + ~ + ~ ~ ~ + ~ + + + ~ o ~ ~ | 5 o 3 | gentoo ---------+---------------------------------+-------+------- 4.0.9-r4 | + + + + + + + + + + + + + ~ ~ ~ | 7 o 0 | gentoo TIFFReadDirEntryArray() is not present in the 3.x code. Tree is secure. |