[Secure-testing-commits] r45447 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Oct 19 07:13:20 UTC 2016
Author: carnil
Date: 2016-10-19 07:13:20 +0000 (Wed, 19 Oct 2016)
New Revision: 45447
Modified:
data/CVE/list
Log:
Add fixed version for CVE-2016-868{2,3,4}/graphicsmagick
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2016-10-19 04:56:51 UTC (rev 45446)
+++ data/CVE/list 2016-10-19 07:13:20 UTC (rev 45447)
@@ -578,17 +578,17 @@
NOTE: https://blogs.gentoo.org/ago/2016/08/29/potrace-invalid-memory-access-in-findnext-decompose-c/
CVE-2016-8684 [memory allocation failure in MagickMalloc (memory.c)]
RESERVED
- - graphicsmagick <unfixed>
+ - graphicsmagick 1.3.25-5
NOTE: https://blogs.gentoo.org/ago/2016/09/15/graphicsmagick-memory-allocation-failure-in-magickmalloc-memory-c/
NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/c53725cb5449
CVE-2016-8683 [memory allocation failure in ReadPCXImage (pcx.c)]
RESERVED
- - graphicsmagick <unfixed>
+ - graphicsmagick 1.3.25-5
NOTE: https://blogs.gentoo.org/ago/2016/09/15/graphicsmagick-memory-allocation-failure-in-readpcximage-pcx-c/
NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/b9edafd479b9
CVE-2016-8682 [stack-based buffer overflow in ReadSCTImage (sct.c)]
RESERVED
- - graphicsmagick <unfixed>
+ - graphicsmagick 1.3.25-5
NOTE: https://blogs.gentoo.org/ago/2016/09/15/graphicsmagick-stack-based-buffer-overflow-in-readsctimage-sct-c/
NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/0a0dfa81906d
CVE-2016-8679 [dwarf_util.c: heap-based buffer overflow in _dwarf_get_size_of_val]
More information about the Secure-testing-commits
mailing list