[Secure-testing-commits] r42259 - data/CVE

Thu Jun 2 18:40:08 UTC 2016

Author: jmm
Date: 2016-06-02 18:40:08 +0000 (Thu, 02 Jun 2016)
New Revision: 42259

Modified:
   data/CVE/list
Log:
first batch of 2014 imagemagick CVE IDs


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2016-06-02 18:21:31 UTC (rev 42258)
+++ data/CVE/list	2016-06-02 18:40:08 UTC (rev 42259)
@@ -1,3 +1,69 @@
+CVE-2014-9804 [Avoid a DOS in vision.c due to an infinite loop]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9805 [Avoid a SEGV due to a corrupted pnm file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9806 [Do not leak fd due to corrupted file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9807 [Fix a double free in pdb coder]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9808 [Fix a SEGV due to corrupted dpc images]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9809 [Fix a SEGV due to corrupted xwd images]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9810 [Fix a SEGV in dpx file handler]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9811 [Fix a SEGV in malformed xwd file handler]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9812 [Avoid a NULL pointer dereference in ps file handling]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9813 [Fix a crash with corrupted viff file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9814 [Fix a NULL pointer dereference in wpg file handling]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9815 [Do not continue on corrupted wpg file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9816 [Avoid an out of bound access in viff image]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9817 [Avoid a heap buffer overflow in pdb file handling]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9818 [Avoid an out of bound access on malformed sun file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9819 [Avoid heap overflow in palm files]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9820 [Avoid heap overflow in pnm files]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9821 [Avoid heap overflow in xpm files]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9822 [Fix heap overflow in quantum file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9823 [Fix heap overflow in palm file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9824 [Fix heap overflow in psd file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9825 [Fix handling of corrupted of psd file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9826 [Fix handling of corrupted of sun file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9827 [Fix handling of corrupted of xpm file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9828 [Fix corrupted (too many colors) psd file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9829 [Fix an out of bound access in sun file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9830 [Fix handling of corrupted sun file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9831 [Fix handling of corrupted wpg file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9832 [Fix heap overflow in pcx files]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9833 [Fix heap overflow in psd files]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9834 [Fix heap overflow in pict files]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9835 [Fix heap overflow in wpf files]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9836 [DOS in xpm files]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
 CVE-2016-XXXX [doesn't remove metadata in embedded images in PDFs]
 	- mat <unfixed> (bug #826101)
 	NOTE: https://labs.riseup.net/code/issues/11067


