[Secure-testing-commits] r50488 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Apr 9 16:09:08 UTC 2017
Author: carnil
Date: 2017-04-09 16:09:08 +0000 (Sun, 09 Apr 2017)
New Revision: 50488
Modified:
data/CVE/list
Log:
Add another imagemagick issue iwth pending CVE assignmend and requested by maintainer, #859769
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-04-09 16:08:58 UTC (rev 50487)
+++ data/CVE/list 2017-04-09 16:09:08 UTC (rev 50488)
@@ -2,6 +2,10 @@
- asterisk <unfixed> (bug #859910)
[wheezy] - asterisk <not-affected> (Vulnerable code not present)
NOTE: http://downloads.asterisk.org/pub/security/AST-2017-001.html
+CVE-2017-XXXX [Infinite loop due to rounding error]
+ - imagemagick <unfixed> (bug #859769)
+ NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31506
+ NOTE: Fixed by: http://git.imagemagick.org/repos/ImageMagick/commit/63757068c803f692bd70304b06ce3406e0b67c7f
CVE-2017-7606 [Undefined behavoir in rle]
- imagemagick <unfixed> (bug #859771)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/415
More information about the Secure-testing-commits
mailing list