[Secure-testing-commits] r58892 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Dec 24 09:29:17 UTC 2017


Author: carnil
Date: 2017-12-24 09:29:12 +0000 (Sun, 24 Dec 2017)
New Revision: 58892

Modified:
   data/CVE/list
Log:
Add CVE-2017-17881

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-24 09:27:02 UTC (rev 58891)
+++ data/CVE/list	2017-12-24 09:29:12 UTC (rev 58892)
@@ -29,7 +29,10 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/903f14eb94521aa6dca9d9ac55d3d9a6c7676a63
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/92fbef516b94ed96fa2a672831acd5dafb242ac5
 CVE-2017-17881 (In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ...)
-	TODO: check
+	- imagemagick <unfixed> (unimportant)
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/878
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/ece953bbe14e8514afc23e05e4030eea872e29da
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/aa601d79a630f6de0694fadbeee31456a357fa73
 CVE-2017-17880 (In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a stack-based ...)
 	TODO: check
 CVE-2017-17879 (In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based ...)




More information about the Secure-testing-commits mailing list