[Secure-testing-commits] r29794 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2014-11-02 14:49:55 +0000 (Sun, 02 Nov 2014)
New Revision: 29794

Modified:
   data/CVE/list
Log:
Update information for CVE-2014-8355

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2014-11-02 14:26:28 UTC (rev 29793)
+++ data/CVE/list	2014-11-02 14:49:55 UTC (rev 29794)
@@ -143,6 +143,12 @@
 	- imagemagick 8:6.8.9.9-1 (bug #767240)
 	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
+	NOTE: Upstream commit: http://trac.imagemagick.org/changeset/16773 (imagemagick)
+	NOTE: https://int21.de/cve/CVE-2014-8355-pcx-oob-heap-overflow.html
+	- graphicsmagick <unfixed>
+	[wheezy] - graphicsmagick <no-dsa> (Minor issue)
+	[squeeze] - graphicsmagick <no-dsa> (Minor issue)
+	NOTE: http://sourceforge.net/p/graphicsmagick/code/ci/4426024497f9ed26cbadc5af5a5de55ac84796ff/ (graphicsmagick)
 CVE-2014-8562 [buffer overflow in DCM parser]
 	- imagemagick 8:6.8.9.9-1 (bug #767240)
 	[wheezy] - imagemagick <no-dsa> (Minor issue)