[Secure-testing-commits] r41389 - data/CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Tue May 3 17:27:35 UTC 2016
Author: anarcat
Date: 2016-05-03 17:27:35 +0000 (Tue, 03 May 2016)
New Revision: 41389
Modified:
data/CVE/list
Log:
Summary: add imagemagick CVE
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-05-03 17:15:23 UTC (rev 41388)
+++ data/CVE/list 2016-05-03 17:27:35 UTC (rev 41389)
@@ -1831,8 +1831,11 @@
RESERVED
CVE-2016-3715
RESERVED
-CVE-2016-3714
+CVE-2016-3714 [Insufficient filtering for filename passed to delegate's command allows remote code execution during conversion of several file formats]
RESERVED
+ - imagemagick <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-3714 has workaround
+ TODO: check if other packages are affected
CVE-2016-3713
RESERVED
CVE-2016-3712
More information about the Secure-testing-commits
mailing list