[Secure-testing-commits] r58459 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Dec 11 09:33:23 UTC 2017
Author: carnil
Date: 2017-12-11 09:33:23 +0000 (Mon, 11 Dec 2017)
New Revision: 58459
Modified:
data/CVE/list
Log:
Add CVE-2017-17499/imagemagick
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-11 09:31:47 UTC (rev 58458)
+++ data/CVE/list 2017-12-11 09:33:23 UTC (rev 58459)
@@ -110,7 +110,10 @@
NOTE: http://hg.code.sf.net/p/graphicsmagick/code/rev/1366f2dd9931
NOTE: https://sourceforge.net/p/graphicsmagick/bugs/523/
CVE-2017-17499 (ImageMagick before 6.9.9-24 and 7.x before 7.0.7-12 has a ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/8c35502217c1879cb8257c617007282eee3fe1cc
+ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/dd96d671e4d5ae22c6894c302e8996c13f24c45a
+ NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=33078&sid=5fbb164c3830293138917f9b14264ed1
CVE-2017-17498 (WritePNMImage in coders/pnm.c in GraphicsMagick 1.3.26 allows remote ...)
TODO: check
CVE-2017-17497 (In Tidy 5.7.0, the prvTidyTidyMetaCharset function in clean.c allows ...)
More information about the Secure-testing-commits
mailing list