[Secure-testing-commits] r46396 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Nov 21 19:57:23 UTC 2016
Author: carnil
Date: 2016-11-21 19:57:23 +0000 (Mon, 21 Nov 2016)
New Revision: 46396
Modified:
data/CVE/list
Log:
Add entry for #845242
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-21 19:55:50 UTC (rev 46395)
+++ data/CVE/list 2016-11-21 19:57:23 UTC (rev 46396)
@@ -8,6 +8,11 @@
NOTE: Since 7.0.72-3, src:tomcat7 only builds the Servlet API
- tomcat6 6.0.41-3
NOTE: Since 6.0.41-3, src:tomcat6 only builds a servlet and docs in Jessie
+CVE-2016-XXXX [Heap buffer overflow in heap-buffer-overflow in IsPixelGray]
+ - imagemagick <unfixed> (bug #845242)
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/301
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/174de08d7c81ce147689f3b1c73fadd6bf1c023c
+ TODO: check
CVE-2016-XXXX [Prevent fault in MSL interpreter]
- imagemagick <unfixed> (bug #845241)
NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=30797
More information about the Secure-testing-commits
mailing list