[Secure-testing-commits] r45105 - data/CVE

Ben Hutchings benh at moszumanska.debian.org
Thu Oct 6 17:43:03 UTC 2016 

Author: benh
Date: 2016-10-06 17:43:01 +0000 (Thu, 06 Oct 2016)
New Revision: 45105

Modified:
   data/CVE/list
Log:
Triage some imagemagick issues for wheezy

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2016-10-06 11:05:26 UTC (rev 45104)
+++ data/CVE/list	2016-10-06 17:43:01 UTC (rev 45105)
@@ -10111,6 +10111,7 @@
 CVE-2014-9804 [Avoid a DOS in vision.c due to an infinite loop]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
+	[wheezy] - imagemagick <not-affected> (Vulnerable code introduced later)
 CVE-2014-9805 [Avoid a SEGV due to a corrupted pnm file]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
@@ -10159,6 +10160,7 @@
 CVE-2014-9820 [Avoid heap overflow in pnm files]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
+	[wheezy] - imagemagick <not-affected> (Vulnerable code not present)
 CVE-2014-9821 [Avoid heap overflow in xpm files]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
@@ -10174,12 +10176,15 @@
 CVE-2014-9825 [Fix handling of corrupted of psd file]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
+	[wheezy] - imagemagick <not-affected> (Vulnerable code not present)
 CVE-2014-9826 [Fix handling of corrupted of sun file]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
+	[wheezy] - imagemagick <no-dsa> (No apparent security impact)
 CVE-2014-9827 [Fix handling of corrupted of xpm file]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
+	[wheezy] - imagemagick <not-affected> (Vulnerable code not present)
 CVE-2014-9828 [Fix corrupted (too many colors) psd file]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
@@ -10222,9 +10227,11 @@
 CVE-2014-9841 [Fixed throwing of exceptions in psd handling]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
+	[wheezy] - imagemagick <no-dsa> (Minor issue)
 CVE-2014-9842 [memory leak in psd handling]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
+	[wheezy] - imagemagick <no-dsa> (Minor issue)
 CVE-2014-9843 [Fixed boundary checks in DecodePSDPixels]
 	RESERVED
 	- imagemagick 8:6.8.9.9-4 (bug #773834)

More information about the Secure-testing-commits mailing list