[Secure-testing-commits] r42179 - data/CVE

Tue May 31 04:50:14 UTC 2016

Author: carnil
Date: 2016-05-31 04:50:14 +0000 (Tue, 31 May 2016)
New Revision: 42179

Modified:
   data/CVE/list
Log:
graphicsmagick issues fixed in unstable upload

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2016-05-31 04:38:32 UTC (rev 42178)
+++ data/CVE/list	2016-05-31 04:50:14 UTC (rev 42179)
@@ -17,7 +17,7 @@
 	NOTE: Fixed by: https://sourceforge.net/p/postfixadmin/code/1842
 CVE-2016-5118 [popen() shell vulnerability via filename]
 	- imagemagick <unfixed> (bug #825799)
-	- graphicsmagick <unfixed> (bug #825800)
+	- graphicsmagick 1.3.24-1 (bug #825800)
 	NOTE: fixed by http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/ae3928faa858
 CVE-2016-5116 [xbm: avoid stack overflow (read) with large names]
 	- libgd2 2.2.1-1
@@ -3826,22 +3826,22 @@
 CVE-2016-3718 (The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 and 7.x ...)
 	{DSA-3580-1 DLA-486-1 DLA-484-1}
 	- imagemagick <unfixed>
-	- graphicsmagick <unfixed>
+	- graphicsmagick 1.3.24-1
 	NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3717 (The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 ...)
 	{DSA-3580-1 DLA-486-1 DLA-484-1}
 	- imagemagick <unfixed>
-	- graphicsmagick <unfixed>
+	- graphicsmagick 1.3.24-1
 	NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3716 (The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 ...)
 	{DSA-3580-1 DLA-486-1 DLA-484-1}
 	- imagemagick <unfixed>
-	- graphicsmagick <unfixed>
+	- graphicsmagick 1.3.24-1
 	NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3715 (The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x before ...)
 	{DSA-3580-1 DLA-486-1 DLA-484-1}
 	- imagemagick <unfixed>
-	- graphicsmagick <unfixed>
+	- graphicsmagick 1.3.24-1
 	NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3714 (The (1) EPHEMERAL, (2) HTTPS, (3) MVG, (4) MSL, (5) TEXT, (6) SHOW, ...)
 	{DSA-3580-1 DLA-486-1 DLA-484-1}
@@ -3852,7 +3852,7 @@
 	NOTE: https://imagetragick.com/
 	NOTE: notice how the workaround differs between the three refs above
 	NOTE: PLT formmat removed with: https://github.com/ImageMagick/ImageMagick/commit/e87116ab2bd070c47943d4118a18c8f3a47461e2
-	- graphicsmagick <unfixed>
+	- graphicsmagick 1.3.24-1
 	NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 	NOTE: https://sourceforge.net/p/graphicsmagick/code/ci/45998a25992d1142df201d8cf024b6c948b40748/
 CVE-2016-3713 [kvm: OOB r/w access issue with MSR 0x2F8]
@@ -7953,7 +7953,7 @@
 CVE-2016-2317
 	RESERVED
 	{DLA-484-1}
-	- graphicsmagick <unfixed> (bug #814732)
+	- graphicsmagick 1.3.24-1 (bug #814732)
 	NOTE: FIX http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/98394eb235a6
 	NOTE: FIX http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/52b59d2ef4a1
 	NOTE: FIX http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/44ed8318ba6a


