[Secure-testing-commits] r54988 - data/CVE

Wed Aug 23 09:19:15 UTC 2017

Author: jmm
Date: 2017-08-23 09:19:15 +0000 (Wed, 23 Aug 2017)
New Revision: 54988

Modified:
   data/CVE/list
Log:
more imagemagick issues


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-08-23 09:18:44 UTC (rev 54987)
+++ data/CVE/list	2017-08-23 09:19:15 UTC (rev 54988)
@@ -16,13 +16,17 @@
 CVE-2017-13135
 	RESERVED
 CVE-2017-13134 (In ImageMagick 7.0.6-6, a heap-based buffer over-read was found in the ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/670
 CVE-2017-13133 (In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/679
 CVE-2017-13132 (In ImageMagick 7.0.6-8, the WritePDFImage function in coders/pdf.c ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/674
 CVE-2017-13131 (In ImageMagick 7.0.6-8, a memory leak vulnerability was found in the ...)
-	TODO: check
+	- imagemagick <unfixed> (unimportant)
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/676
 CVE-2017-13130 (mcmnm in BMC Patrol allows local users to gain privileges via a crafted ...)
 	TODO: check
 CVE-2017-13129


