[Secure-testing-commits] r29796 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Nov 2 14:50:10 UTC 2014
Author: carnil
Date: 2014-11-02 14:50:09 +0000 (Sun, 02 Nov 2014)
New Revision: 29796
Modified:
data/CVE/list
Log:
Update information for CVE-2014-8354
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2014-11-02 14:50:02 UTC (rev 29795)
+++ data/CVE/list 2014-11-02 14:50:09 UTC (rev 29796)
@@ -160,6 +160,8 @@
- imagemagick 8:6.8.9.9-1
[wheezy] - imagemagick <no-dsa> (Minor issue)
[squeeze] - imagemagick <no-dsa> (Minor issue)
+ NOTE: https://int21.de/cve/CVE-2014-8354-oob-heap-overflow.html
+ NOTE: Upstream commit: http://trac.imagemagick.org/changeset/16765
CVE-2014-8561 [Remotely DOS: convert +profile regression enters infinite loop exhausting memory]
- imagemagick 8:6.8.9.9-1 (bug #764872)
[wheezy] - imagemagick <not-affected> (Vulnerable code introduced later; regression)
More information about the Secure-testing-commits
mailing list