[Secure-testing-commits] r47476 - in data: CVE DLA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Tue Dec 27 06:02:44 UTC 2016
Author: carnil
Date: 2016-12-27 06:02:44 +0000 (Tue, 27 Dec 2016)
New Revision: 47476
Modified:
data/CVE/list
data/DLA/list
Log:
CVE-2016-10068/imagemagick assigned
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-12-27 06:02:32 UTC (rev 47475)
+++ data/CVE/list 2016-12-27 06:02:44 UTC (rev 47476)
@@ -9251,12 +9251,11 @@
NOTE: https://github.com/ImageMagick/ImageMagick/issues/301
NOTE: https://github.com/ImageMagick/ImageMagick/commit/174de08d7c81ce147689f3b1c73fadd6bf1c023c
NOTE: https://github.com/ImageMagick/ImageMagick/commit/ce98a7acbcfca7f0a178f4b1e7b957e419e0cc99 (master)
-CVE-2016-XXXX [Prevent fault in MSL interpreter]
+CVE-2016-10068 [Prevent fault in MSL interpreter]
- imagemagick 8:6.9.6.5+dfsg-1 (bug #845241)
NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=30797
- [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
NOTE: https://github.com/ImageMagick/ImageMagick/commit/56d6e20de489113617cbbddaf41e92600a34db22
- NOTE: CVE Request: http://www.openwall.com/lists/oss-security/2016/12/20/3
+ NOTE: http://www.openwall.com/lists/oss-security/2016/12/20/3
CVE-2016-10058 [Fixed memory leak in psd file handling]
- imagemagick 8:6.9.6.5+dfsg-1 (bug #845239)
[jessie] - imagemagick <not-affected> (Vulnerable code using layer_info[i].info introduced later)
Modified: data/DLA/list
===================================================================
--- data/DLA/list 2016-12-27 06:02:32 UTC (rev 47475)
+++ data/DLA/list 2016-12-27 06:02:44 UTC (rev 47476)
@@ -26,7 +26,7 @@
{CVE-2016-4412 CVE-2016-6626 CVE-2016-9849 CVE-2016-9850 CVE-2016-9861 CVE-2016-9864 CVE-2016-9865}
[wheezy] - phpmyadmin 4:3.4.11.1-2+deb7u7
[21 Dec 2016] DLA-756-1 imagemagick - security update
- {CVE-2016-7799 CVE-2016-8707 CVE-2016-8862 CVE-2016-8866 CVE-2016-9556 CVE-2016-10059 CVE-2016-10060 CVE-2016-10061 CVE-2016-10063 CVE-2016-10064 CVE-2016-10065 CVE-2016-10066 CVE-2016-10067}
+ {CVE-2016-7799 CVE-2016-8707 CVE-2016-8862 CVE-2016-8866 CVE-2016-9556 CVE-2016-10059 CVE-2016-10060 CVE-2016-10061 CVE-2016-10063 CVE-2016-10064 CVE-2016-10065 CVE-2016-10066 CVE-2016-10067 CVE-2016-10068}
[wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
[21 Dec 2016] DLA-755-1 dcmtk - security update
{CVE-2015-8979}
More information about the Secure-testing-commits
mailing list