[Secure-testing-commits] r37036 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2015-10-07 15:39:08 +0000 (Wed, 07 Oct 2015)
New Revision: 37036

Modified:
   data/CVE/list
Log:
Add three new temporary items for imagemagick

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2015-10-07 15:14:14 UTC (rev 37035)
+++ data/CVE/list	2015-10-07 15:39:08 UTC (rev 37036)
@@ -1,3 +1,20 @@
+CVE-2015-XXXX [Double free in coders/pict.c:2000]
+	- imagemagick <unfixed>
+	NOTE: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1448803
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/07/2
+	TODO: check
+CVE-2015-XXXX [Double free in coders/tga.c:221]
+	- imagemagick <unfixed>
+	NOTE: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1490362
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/4f68e9661518463fca523c9726bb5d940a2aa6d8
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/07/2
+	TODO: check
+CVE-2015-XXXX [Integer and Buffer overflow in coders/icon.c]
+	- imagemagick <unfixed>
+	NOTE: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1459747
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/0f6fc2d5bf8f500820c3dbcf0d23ee14f2d9f734
+	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/07/2
+	TODO: check
 CVE-2015-XXXX [EncryptedType uses static IV per key]
 	- python-sqlalchemy-utils <unfixed>
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2015/10/06/7