[Secure-testing-commits] r46560 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Nov 25 20:58:13 UTC 2016
Author: carnil
Date: 2016-11-25 20:58:13 +0000 (Fri, 25 Nov 2016)
New Revision: 46560
Modified:
data/CVE/list
Log:
CVE-2016-8862, reconfirmed, not yet fixed correctly in sid
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-25 20:51:34 UTC (rev 46559)
+++ data/CVE/list 2016-11-25 20:58:13 UTC (rev 46560)
@@ -2533,7 +2533,7 @@
NOTE: Only thing the attacker could do here is self-dos own connection
CVE-2016-8862 [imagemagick: memory allocation failure in AcquireMagickMemory (memory.c)]
RESERVED
- - imagemagick 8:6.9.6.2+dfsg-2 (bug #845634)
+ - imagemagick <unfixed> (bug #845634)
NOTE: https://blogs.gentoo.org/ago/2016/10/17/imagemagick-memory-allocation-failure-in-acquiremagickmemory-memory-c/
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/aea6c6507f55632829e6432f8177a084a57c9fcc
NOTE: The initial patch was initiall meant to be incomplete and resulted in CVE-2016-8866. So when fixing
More information about the Secure-testing-commits
mailing list