[Secure-testing-commits] r44157 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Fri Aug 26 13:56:35 UTC 2016


Author: jmm
Date: 2016-08-26 13:56:35 +0000 (Fri, 26 Aug 2016)
New Revision: 44157

Modified:
   data/CVE/list
Log:
phpmyadmin n/a
imagemagick n/a
ecryptfs-utils no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-08-26 09:10:13 UTC (rev 44156)
+++ data/CVE/list	2016-08-26 13:56:35 UTC (rev 44157)
@@ -1120,6 +1120,7 @@
 CVE-2016-6617
 	RESERVED
 	- phpmyadmin 4:4.6.4+dfsg1-1
+	[jessie] - phpmyadmin <not-affected> (Only affects 4.6.x)
 CVE-2016-6616
 	RESERVED
 	- phpmyadmin 4:4.6.4+dfsg1-1
@@ -1147,6 +1148,7 @@
 CVE-2016-6608
 	RESERVED
 	- phpmyadmin 4:4.6.4+dfsg1-1
+	[jessie] - phpmyadmin <not-affected> (Only affects 4.6.x)
 CVE-2016-6607
 	RESERVED
 	- phpmyadmin 4:4.6.4+dfsg1-1
@@ -1585,10 +1587,9 @@
 	- grails <itp> (bug #473213)
 CVE-2016-6520 [buffer overflow]
 	RESERVED
-	- imagemagick <unfixed> (bug #833485)
+	- imagemagick <not-affected> (Only affects imagemagick 7, which isn't packaged yet, bug #833485)
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/76401e172ea3a55182be2b8e2aca4d07270f6da6
-	NOTE: According to https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=30259&p=136359#p136359 only ImageMagick 7 specific?
-	TODO: check
+	NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=30259&p=136359#p136359
 CVE-2016-6516 (Race condition in the ioctl_file_dedupe_range function in fs/ioctl.c ...)
 	- linux <unfixed>
 	[jessie] - linux <not-affected> (Vulnerable code introduced later)
@@ -2903,6 +2904,7 @@
 	NOTE: https://cgit.freedesktop.org/harfbuzz/commit/?id=f96664974774bfeb237a7274f512f64aaafb201e (1.0.5)
 CVE-2015-8946 (ecryptfs-setup-swap in eCryptfs before 111 does not prevent the ...)
 	- ecryptfs-utils 111-1
+	[jessie] - ecryptfs-utils <no-dsa> (Minor issue)
 	[wheezy] - ecryptfs-utils <no-dsa> (Only happens if using systemd v207 onward)
 	NOTE: https://launchpad.net/bugs/1447282
 	NOTE: Fixed by: https://bazaar.launchpad.net/~ecryptfs/ecryptfs/trunk/revision/857




More information about the Secure-testing-commits mailing list