[Secure-testing-commits] r47463 - in data: CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Dec 27 05:22:56 UTC 2016
Author: carnil
Date: 2016-12-27 05:22:56 +0000 (Tue, 27 Dec 2016)
New Revision: 47463
Modified:
data/CVE/list
data/DSA/list
Log:
CVE-2016-10049/imagemagick assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-27 05:17:03 UTC (rev 47462)
+++ data/CVE/list 2016-12-27 05:22:56 UTC (rev 47463)
@@ -18156,12 +18156,12 @@
NOTE: Workaround entry for DLA-731-1 until CVE is assigned
NOTE: https://github.com/ImageMagick/ImageMagick/commit/73fb0aac5b958521e1511e179ecc0ad49f70ebaf
NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
-CVE-2016-XXXX [Segfault in ReadRLEImage]
+CVE-2016-10049 [Segfault in ReadRLEImage]
- imagemagick 8:6.9.6.2+dfsg-2 (bug #833743)
- [jessie] - imagemagick 8:6.8.9.9-5+deb8u4
[wheezy] - imagemagick <not-affected> (Vulnerability likely introduced in a version after 6.7.7.10)
NOTE: https://github.com/ImageMagick/ImageMagick/commit/3e9165285eda6e1bb71172031d3048b51bb443a4
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
+ NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=29710
+ NOTE: http://www.openwall.com/lists/oss-security/2016/12/20/3
CVE-2016-10048 [Coder path transversal]
- imagemagick 8:6.9.5.7+dfsg-1 (bug #833735)
NOTE: https://github.com/ImageMagick/ImageMagick/commit/fc6080f1321fd21e86ef916195cc110b05d9effb
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2016-12-27 05:17:03 UTC (rev 47462)
+++ data/DSA/list 2016-12-27 05:22:56 UTC (rev 47463)
@@ -298,7 +298,7 @@
{CVE-2016-6354}
[jessie] - flex 2.5.39-8+deb8u1
[25 Aug 2016] DSA-3652-1 imagemagick - security update
- {CVE-2014-9907 CVE-2015-8957 CVE-2015-8958 CVE-2015-8959 CVE-2016-4562 CVE-2016-4563 CVE-2016-4564 CVE-2016-5010 CVE-2016-5687 CVE-2016-5688 CVE-2016-5689 CVE-2016-5690 CVE-2016-5691 CVE-2016-5841 CVE-2016-5842 CVE-2016-6491 CVE-2016-6823 CVE-2016-7513 CVE-2016-7514 CVE-2016-7515 CVE-2016-7516 CVE-2016-7517 CVE-2016-7518 CVE-2016-7519 CVE-2016-7520 CVE-2016-7521 CVE-2016-7522 CVE-2016-7523 CVE-2016-7524 CVE-2016-7525 CVE-2016-7526 CVE-2016-7527 CVE-2016-7528 CVE-2016-7529 CVE-2016-7530 CVE-2016-7531 CVE-2016-7532 CVE-2016-7533 CVE-2016-7534 CVE-2016-7535 CVE-2016-7536 CVE-2016-7537 CVE-2016-7538 CVE-2016-7539 CVE-2016-7540 CVE-2016-10046 CVE-2016-10047 CVE-2016-10048}
+ {CVE-2014-9907 CVE-2015-8957 CVE-2015-8958 CVE-2015-8959 CVE-2016-4562 CVE-2016-4563 CVE-2016-4564 CVE-2016-5010 CVE-2016-5687 CVE-2016-5688 CVE-2016-5689 CVE-2016-5690 CVE-2016-5691 CVE-2016-5841 CVE-2016-5842 CVE-2016-6491 CVE-2016-6823 CVE-2016-7513 CVE-2016-7514 CVE-2016-7515 CVE-2016-7516 CVE-2016-7517 CVE-2016-7518 CVE-2016-7519 CVE-2016-7520 CVE-2016-7521 CVE-2016-7522 CVE-2016-7523 CVE-2016-7524 CVE-2016-7525 CVE-2016-7526 CVE-2016-7527 CVE-2016-7528 CVE-2016-7529 CVE-2016-7530 CVE-2016-7531 CVE-2016-7532 CVE-2016-7533 CVE-2016-7534 CVE-2016-7535 CVE-2016-7536 CVE-2016-7537 CVE-2016-7538 CVE-2016-7539 CVE-2016-7540 CVE-2016-10046 CVE-2016-10047 CVE-2016-10048 CVE-2016-10049}
[jessie] - imagemagick 8:6.8.9.9-5+deb8u4
[25 Aug 2016] DSA-3651-1 rails - security update
{CVE-2016-6316}
More information about the Secure-testing-commits
mailing list