[Secure-testing-commits] r54292 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-08-04 21:13:14 +0000 (Fri, 04 Aug 2017)
New Revision: 54292

Modified:
   data/CVE/list
Log:
One imagemagick issue already fixed, #870504

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-04 21:10:13 UTC (rev 54291)
+++ data/CVE/list	2017-08-04 21:13:14 UTC (rev 54292)
@@ -101,7 +101,10 @@
 CVE-2017-12436
 	RESERVED
 CVE-2017-12435 (In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in ...)
-	TODO: check
+	- imagemagick 8:6.9.7.4+dfsg-16 (bug #870504)
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/543
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/2dd8d55742fce7d079b6a16039c18e49c091224f
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/44cb8dfd4cbe6fc475c863a5946cff64e34c2088
 CVE-2017-12434 (In ImageMagick 7.0.6-1, a missing NULL check vulnerability was found in ...)
 	TODO: check
 CVE-2017-12433 (In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the ...)