[Secure-testing-commits] r44177 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Aug 27 12:11:59 UTC 2016


Author: carnil
Date: 2016-08-27 12:11:59 +0000 (Sat, 27 Aug 2016)
New Revision: 44177

Modified:
   data/CVE/list
Log:
Update information for #826101

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-08-27 12:09:46 UTC (rev 44176)
+++ data/CVE/list	2016-08-27 12:11:59 UTC (rev 44177)
@@ -6068,9 +6068,10 @@
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
 CVE-2016-XXXX [doesn't remove metadata in embedded images in PDFs]
-	- mat <unfixed> (bug #826101)
+	- mat 0.6.1-3 (bug #826101)
 	[jessie] - mat <no-dsa> (Documented short-coming, can possibly be fixed by migrating to new upstream release)
 	NOTE: https://0xacab.org/mat/mat/issues/11067
+	NOTE: Patch in 0.6.1-3 disabled PDF support
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/06/02/5
 CVE-2016-5239 [ImageMagick, GraphicsMagick: Gnuplot delegate vulnerability allowing command injection]
 	RESERVED




More information about the Secure-testing-commits mailing list