[Secure-testing-commits] r58759 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Dec 21 07:57:33 UTC 2017


Author: carnil
Date: 2017-12-21 07:57:32 +0000 (Thu, 21 Dec 2017)
New Revision: 58759

Modified:
   data/CVE/list
Log:
Mark CVE-2017-17783 as no-dsa

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-21 07:46:05 UTC (rev 58758)
+++ data/CVE/list	2017-12-21 07:57:32 UTC (rev 58759)
@@ -127,6 +127,8 @@
 	NOTE: Fixed by: https://github.com/ruby/ruby/commit/e7464561b5151501beb356fc750d5dd1a88014f7
 CVE-2017-17783 (In GraphicsMagick 1.3.27a, there is a buffer over-read in ReadPALMImage ...)
 	- graphicsmagick <unfixed>
+	[stretch] - graphicsmagick <no-dsa> (Minor issue, we build with QuantumDepth=16)
+	[jessie] - graphicsmagick <no-dsa> (Minor issue)
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=60932931559a
 	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/529/
 CVE-2017-17782 (In GraphicsMagick 1.3.27a, there is a heap-based buffer over-read in ...)




More information about the Secure-testing-commits mailing list