[Secure-testing-commits] r54597 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Aug 11 06:22:40 UTC 2017


Author: carnil
Date: 2017-08-11 06:22:39 +0000 (Fri, 11 Aug 2017)
New Revision: 54597

Modified:
   data/CVE/list
Log:
Adjust state for one imagemagick issue

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-11 06:03:38 UTC (rev 54596)
+++ data/CVE/list	2017-08-11 06:22:39 UTC (rev 54597)
@@ -2356,12 +2356,8 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/633
 	NOTE: ossibly fixed by same commit as issue #631 upstream
 CVE-2017-11753 (The GetImageDepth function in MagickCore/attribute.c in ImageMagick ...)
-	- imagemagick <unfixed>
-	[stretch] - imagemagick <not-affected> (Upstream says this issue affects only IM7)
-	[jessie] - imagemagick <not-affected> (Upstream says this issue affects only IM7)
-	[wheezy] - imagemagick <not-affected> (Upstream says this issue affects only IM7)
+	- imagemagick <not-affected> (Affects only ImageMagick-7; vulnerable code not present)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/629
-	TODO: check
 CVE-2017-11752 (The ReadMAGICKImage function in coders/magick.c in ImageMagick 7.0.6-4 ...)
 	- imagemagick 8:6.9.7.4+dfsg-16 (bug #870481)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/628




More information about the Secure-testing-commits mailing list