[Secure-testing-commits] r58567 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Dec 14 09:19:04 UTC 2017


Author: carnil
Date: 2017-12-14 09:19:04 +0000 (Thu, 14 Dec 2017)
New Revision: 58567

Modified:
   data/CVE/list
Log:
Add CVE-2017-17680/imagemagick, mark as unimportant

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-14 09:17:20 UTC (rev 58566)
+++ data/CVE/list	2017-12-14 09:19:04 UTC (rev 58567)
@@ -2013,7 +2013,10 @@
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/edf1b9408492b97cd08111a0a9cb123f6391dc5b
 	NOTE: different fix for IM-6: https://github.com/ImageMagick/ImageMagick/commit/cae42160e5ab6de4b2a9433267e143ce295ae957
 CVE-2017-17680 (In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ...)
-	TODO: check
+	- imagemagick <unfixed> (unimportant)
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/873
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/69601843684dd038a8397e1a12dd15777d2513bf
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/7b97357e7f8d6ae848a4c699fe17db6fcf4bd7a9
 CVE-2017-17679
 	RESERVED
 CVE-2017-17678




More information about the Secure-testing-commits mailing list