[Secure-testing-commits] r46575 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Nov 26 08:00:27 UTC 2016
Author: carnil
Date: 2016-11-26 08:00:26 +0000 (Sat, 26 Nov 2016)
New Revision: 46575
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2016-8862
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-11-26 07:47:24 UTC (rev 46574)
+++ data/CVE/list 2016-11-26 08:00:26 UTC (rev 46575)
@@ -2913,7 +2913,7 @@
NOTE: Only thing the attacker could do here is self-dos own connection
CVE-2016-8862 [imagemagick: memory allocation failure in AcquireMagickMemory (memory.c)]
RESERVED
- - imagemagick <unfixed> (bug #845634)
+ - imagemagick 8:6.9.6.6+dfsg-1 (bug #845634)
NOTE: https://blogs.gentoo.org/ago/2016/10/17/imagemagick-memory-allocation-failure-in-acquiremagickmemory-memory-c/
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/aea6c6507f55632829e6432f8177a084a57c9fcc
NOTE: The initial patch was initiall meant to be incomplete and resulted in CVE-2016-8866. So when fixing
More information about the Secure-testing-commits
mailing list