[Secure-testing-commits] r43822 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Aug 7 09:27:09 UTC 2016 

Author: carnil
Date: 2016-08-07 09:27:09 +0000 (Sun, 07 Aug 2016)
New Revision: 43822

Modified:
   data/CVE/list
Log:
Add more imagemagick issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-08-07 09:19:02 UTC (rev 43821)
+++ data/CVE/list	2016-08-07 09:27:09 UTC (rev 43822)
@@ -1,3 +1,36 @@
+CVE-2016-XXXX [off-by-one error leading to segfault]
+	- imagemagick <unfixed> (bug #832455)
+CVE-2016-XXXX [out-of-bounds read in coders/psd.c]
+	- imagemagick <unfixed> (bug #832457)
+	NOTE: https://bugs.launchpad.net/bugs/1533442
+CVE-2016-XXXX [rle file handling for corrupted file]
+	- imagemagick <unfixed> (bug #832461)
+	NOTE: https://bugs.launchpad.net/bugs/1533445
+CVE-2016-XXXX [buffer overflow in sun file handling]
+	- imagemagick <unfixed> (bug #832464)
+CVE-2016-XXXX [potential DOS in sun file handling due to malformed files]
+	- imagemagick <unfixed> (bug #832465)
+CVE-2016-XXXX [out of bunds problem in rle, pict, viff and sun files]
+	- imagemagick <unfixed> (bug #832467)
+	NOTE: https://bugs.launchpad.net/bugs/1533452
+	NOTE: https://bugs.launchpad.net/bugs/1533449
+	NOTE: https://bugs.launchpad.net/bugs/1533447
+	NOTE: https://bugs.launchpad.net/bugs/1533445
+CVE-2016-XXXX [heap overflow in hdr file handling]
+	- imagemagick <unfixed> (bug #832469)
+	NOTE: https://bugs.launchpad.net/bugs/1537213
+CVE-2016-XXXX [heap buffer overflow in psd file handling]
+	- imagemagick <unfixed> (bug #832474)
+	NOTE: https://bugs.launchpad.net/bugs/1537418
+CVE-2016-XXXX [out of bound access for malformed psd file]
+	- imagemagick <unfixed> (bug #832475)
+	NOTE: https://bugs.launchpad.net/bugs/1537419
+CVE-2016-XXXX [meta file out of bound access]
+	- imagemagick <unfixed> (bug #832478)
+	NOTE: https://bugs.launchpad.net/bugs/1537420
+CVE-2016-XXXX [heap buffer overflow in psd file coder]
+	- imagemagick <unfixed> (bug #832480)
+	NOTE: https://bugs.launchpad.net/bugs/1537424
 CVE-2016-XXXX [out of bound access in wpg file coder]
 	- imagemagick <unfixed> (bug #832482)
 	NOTE: https://bugs.launchpad.net/bugs/1539050

More information about the Secure-testing-commits mailing list