[Secure-testing-commits] r55217 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-08-30 04:25:16 +0000 (Wed, 30 Aug 2017)
New Revision: 55217

Modified:
   data/CVE/list
Log:
Add CVE-2017-12875/imagemagick

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-30 04:25:03 UTC (rev 55216)
+++ data/CVE/list	2017-08-30 04:25:16 UTC (rev 55217)
@@ -2512,7 +2512,10 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/663
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/1cc6f0ccc92c20c7cab6c4a7335daf29c91f0d8e
 CVE-2017-12875 (The WritePixelCachePixels function in ImageMagick 7.0.6-6 allows ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/659
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/6f95e543c80319721e22d623bb23712cd29afa9e
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/d96b55ea41e71de43663818ccd17c6af3fa6c4fd
 CVE-2017-12866
 	RESERVED
 CVE-2017-12865 (Stack-based buffer overflow in "dnsproxy.c" in connman 1.34 and ...)