[Secure-testing-commits] r47467 - in data: CVE DSA

[Salvatore Bonaccorso]

Author: carnil
Date: 2016-12-27 05:31:06 +0000 (Tue, 27 Dec 2016)
New Revision: 47467

Modified:
   data/CVE/list
   data/DSA/list
Log:
CVE-2016-10053/imagemagick assigned

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-12-27 05:30:53 UTC (rev 47466)
+++ data/CVE/list	2016-12-27 05:31:06 UTC (rev 47467)
@@ -16797,12 +16797,11 @@
 	[wheezy] - imagemagick 8:6.7.7.10-5+deb7u8
 	NOTE: Workaround entry for DLA-731-1 until CVE is assigned
 	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
-CVE-2016-XXXX [TIFF divide by zero]
+CVE-2016-10053 [TIFF divide by zero]
 	- imagemagick 8:6.9.6.2+dfsg-2 (bug #836171)
-	[jessie] - imagemagick 8:6.8.9.9-5+deb8u5
 	[wheezy] - imagemagick <not-affected> (Vulnerability likely introduced in a version after 6.7.7.10)
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/f983dcdf9c178e0cbc49608a78713c5669aa1bb5
-	NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
+	NOTE: http://www.openwall.com/lists/oss-security/2016/12/20/3
 CVE-2016-7118 (fs/fcntl.c in the "aufs 3.2.x+setfl-debian" patch in the linux-image ...)
 	{DLA-609-1}
 	- linux <not-affected>

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2016-12-27 05:30:53 UTC (rev 47466)
+++ data/DSA/list	2016-12-27 05:31:06 UTC (rev 47467)
@@ -227,6 +227,7 @@
 [23 Sep 2016] DSA-3673-2 openssl - regression update
 	[jessie] - openssl 1.0.1t-1+deb8u5
 [23 Sep 2016] DSA-3675-1 imagemagick - security update
+	{CVE-2016-10053}
 	[jessie] - imagemagick 8:6.8.9.9-5+deb8u5
 [22 Sep 2016] DSA-3674-1 firefox-esr - security update
 	{CVE-2016-5250 CVE-2016-5257 CVE-2016-5261 CVE-2016-5270 CVE-2016-5272 CVE-2016-5274 CVE-2016-5276 CVE-2016-5277 CVE-2016-5278 CVE-2016-5280 CVE-2016-5281 CVE-2016-5284}