Assume rest bug PoCs to be under public domain

They are either not sufficiently large or most likely machine-generated,
as it is unpropable a human would manually write or edit binary formats
randomly, since the corresponding bug report lacks the reasoning
of the bug or the bug-causing conditions.

I could very much make a mistake here though, please let me know
if you are an author of one of these input and want it to be distributed
under different terms.

1 files changed, 6 insertions, 1 deletions

diff --git a/REUSE.toml b/REUSE.toml
index 8a589b9..c67048a 100644
--- a/REUSE.toml
+++ b/REUSE.toml
@@ -8,18 +8,22 @@ SPDX-License-Identifier = 'CC0-1.0'
 [[annotations]]
 path = 'bugs/cve/2012/2806/cnode0006-heap-buffer-overflow-796.jpg'
 SPDX-FileCopyrightText = 'Chris Evans'
+SPDX-License-Identifier = 'CC0-1.0'
 
 [[annotations]]
 path = 'bugs/cve/2012/5134/bad.xml'
-SPDX-FileCopyrightText = 'Jueri Aedla'
+SPDX-FileCopyrightText = 'Jüri Aedla'
+SPDX-License-Identifier = 'CC0-1.0'
 
 [[annotations]]
 path = 'bugs/cve/2013/7437/1.bmp'
 SPDX-FileCopyrightText = 'Murray McAllister'
+SPDX-License-Identifier = 'CC0-1.0'
 
 [[annotations]]
 path = 'bugs/cve/2013/7437/2.bmp'
 SPDX-FileCopyrightText = 'Stefan Cornelius'
+SPDX-License-Identifier = 'CC0-1.0'
 
 [[annotations]]
 path = 'bugs/cve/2014/8128/03_thumbnail.tiff'
@@ -35,6 +39,7 @@ SPDX-License-Identifier = 'CC0-1.0'
 [[annotations]]
 path = 'bugs/cve/2016/3186/crash.gif'
 SPDX-FileCopyrightText = 'Aladdin Mubaied'
+SPDX-License-Identifier = 'CC0-1.0'
 
 [[annotations]]
 path = 'bugs/cve/2016/5844/libarchive-signed-int-overflow.iso'