[Secure-testing-commits] r42260 - data/CVE

Moritz Muehlenhoff jmm at moszumanska.debian.org
Thu Jun 2 18:46:03 UTC 2016 

Author: jmm
Date: 2016-06-02 18:46:02 +0000 (Thu, 02 Jun 2016)
New Revision: 42260

Modified:
   data/CVE/list
Log:
second batch of 2014 CVE IDs for imagemagick


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-06-02 18:40:08 UTC (rev 42259)
+++ data/CVE/list	2016-06-02 18:46:02 UTC (rev 42260)
@@ -64,6 +64,42 @@
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
 CVE-2014-9836 [DOS in xpm files]
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9837 [Add additional PNM sanity checks]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9838 [Avoid a crash to out of memory in magick/cache.c]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9839 [Fix a theoretical out of bound access in magick/colormap-private.h]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9840 [Fix an out of bound access in palm file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9841 [Fixed throwing of exceptions in psd handling]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9842 [memory leak in psd handling]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9843 [Fixed boundary checks in DecodePSDPixels]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9844 [Fix another out of bound problem in rle file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9845 [Fix crash due to corrupted dib file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9846 [Added checks to prevent overflow in rle file]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9847 [Don't try to handle a "previous" image in the JNG decoder]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9848 [Avoid a memory leak in quantum management]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9849 [Avoid a crash in png coder]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9850 [incorrect handling of thread limit 0]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9851 [In psd file handling fixed parsing resource block and avoid a crash]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9852 [In cache fix usage of object after it has been destroyed]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9853 [Avoid a memory leak in rle file handling]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
+CVE-2014-9854 [DoS in image identification]
+	- imagemagick 8:6.8.9.9-4 (bug #773834)
 CVE-2016-XXXX [doesn't remove metadata in embedded images in PDFs]
 	- mat <unfixed> (bug #826101)
 	NOTE: https://labs.riseup.net/code/issues/11067

More information about the Secure-testing-commits mailing list