[Secure-testing-commits] r46543 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Nov 25 13:20:54 UTC 2016


Author: carnil
Date: 2016-11-25 13:20:54 +0000 (Fri, 25 Nov 2016)
New Revision: 46543

Modified:
   data/CVE/list
Log:
CVE-2016-8862/imagemagick fixed in unstable with 8:6.9.6.2+dfsg-2 (first upload to unstable which contains the fix)

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-11-25 13:14:20 UTC (rev 46542)
+++ data/CVE/list	2016-11-25 13:20:54 UTC (rev 46543)
@@ -2517,7 +2517,7 @@
 	NOTE: Only thing the attacker could do here is self-dos own connection
 CVE-2016-8862 [imagemagick: memory allocation failure in AcquireMagickMemory (memory.c)]
 	RESERVED
-	- imagemagick <unfixed> (bug #845634)
+	- imagemagick 8:6.9.6.2+dfsg-2 (bug #845634)
 	NOTE: https://blogs.gentoo.org/ago/2016/10/17/imagemagick-memory-allocation-failure-in-acquiremagickmemory-memory-c/
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/aea6c6507f55632829e6432f8177a084a57c9fcc
 	NOTE: The initial patch was initiall meant to be incomplete and resulted in CVE-2016-8866. So when fixing




More information about the Secure-testing-commits mailing list