[Secure-testing-commits] r47312 - data/CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Thu Dec 22 01:58:24 UTC 2016
Author: anarcat
Date: 2016-12-22 01:58:24 +0000 (Thu, 22 Dec 2016)
New Revision: 47312
Modified:
data/CVE/list
Log:
mark fixed bugs manually for DLA-756-1 for missing CVEs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-22 01:37:37 UTC (rev 47311)
+++ data/CVE/list 2016-12-22 01:58:24 UTC (rev 47312)
@@ -9133,6 +9133,7 @@
CVE-2016-XXXX [mat file out of bound]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #845246)
[jessie] - imagemagick 8:6.8.9.9-5+deb8u6
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
NOTE: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1545366
NOTE: https://github.com/ImageMagick/ImageMagick/issues/131
@@ -9142,6 +9143,7 @@
CVE-2016-XXXX [Add check for invalid mat file]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #845244)
[jessie] - imagemagick 8:6.8.9.9-5+deb8u6
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
NOTE: https://github.com/ImageMagick/ImageMagick/commit/8a370f9ab120faf182aa160900ba692ba8e2bcf0
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
@@ -9169,6 +9171,7 @@
CVE-2016-XXXX [Prevent fault in MSL interpreter]
- imagemagick 8:6.9.6.5+dfsg-1 (bug #845241)
NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=30797
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: https://github.com/ImageMagick/ImageMagick/commit/56d6e20de489113617cbbddaf41e92600a34db22
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
CVE-2016-XXXX [Fixed memory leak in psd file handling]
@@ -9180,12 +9183,14 @@
CVE-2016-XXXX [Suspend exception processing if there are too many exceptions]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #845213)
[jessie] - imagemagick 8:6.8.9.9-5+deb8u6
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
NOTE: https://github.com/ImageMagick/ImageMagick/commit/0474237508f39c4f783208123431815f1ededb76
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
CVE-2016-XXXX [Fix out of bound read in viff file handling]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #845212)
[jessie] - imagemagick 8:6.8.9.9-5+deb8u6
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
NOTE: https://github.com/ImageMagick/ImageMagick/issues/129
NOTE: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1545183
@@ -9193,18 +9198,21 @@
CVE-2016-XXXX [Better check for bufferoverflow for TIFF handling]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #845202)
[jessie] - imagemagick 8:6.8.9.9-5+deb8u6
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
NOTE: https://github.com/ImageMagick/ImageMagick/commit/f8877abac8e568b2f339cca70c2c3c1b6eaec288
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
CVE-2016-XXXX [Check validity of extend during TIFF file reading]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #845198)
[jessie] - imagemagick 8:6.8.9.9-5+deb8u6
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
NOTE: https://github.com/ImageMagick/ImageMagick/commit/2bb6941a2d557f26a2f2049ade466e118eeaab91
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
CVE-2016-XXXX [Check return of write function]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #845196)
NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: https://github.com/ImageMagick/ImageMagick/commit/4e914bbe371433f0590cefdf3bd5f3a5710069f9
NOTE: https://github.com/ImageMagick/ImageMagick/commit/933e96f01a8c889c7bf5ffd30020e86a02a046e7
NOTE: latter patch was missing from 8:6.8.9.9-5+deb8u6 upload so DSA-3726-1 was incomplete
@@ -9212,6 +9220,7 @@
CVE-2016-XXXX [Imagemagick (jessie and older) buffer overflow]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #845195)
[jessie] - imagemagick 8:6.8.9.9-5+deb8u6
+ [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/58cf5bf4fade82e3b510e8f3463a967278a3e410
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
More information about the Secure-testing-commits
mailing list