[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add note for CVE-2017-17681/imagemagick
Salvatore Bonaccorso
carnil at debian.org
Sun Dec 31 16:27:50 UTC 2017
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0e957da6 by Salvatore Bonaccorso at 2017-12-31T17:27:26+01:00
Add note for CVE-2017-17681/imagemagick
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5849,6 +5849,8 @@ CVE-2017-17681 (In ImageMagick 7.0.7-12 Q16, an infinite loop vulnerability was
NOTE: different fix: https://github.com/ImageMagick/ImageMagick/commit/73d59a74e0b0a864c1a9581b8a4bdbee427125e2
NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/edf1b9408492b97cd08111a0a9cb123f6391dc5b
NOTE: different fix for IM-6: https://github.com/ImageMagick/ImageMagick/commit/cae42160e5ab6de4b2a9433267e143ce295ae957
+ NOTE: The fix involves all done changes on the relevant part of coders/psd.c between
+ NOTE: (and including) edf1b9408492b97cd08111a0a9cb123f6391dc5b and cae42160e5ab6de4b2a9433267e143ce295ae957 .
CVE-2017-17680 (In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in ...)
- imagemagick <unfixed> (unimportant)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/873
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e957da6714bea229bbfcf4cc88d09caf3f17b8d
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e957da6714bea229bbfcf4cc88d09caf3f17b8d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20171231/737a5bd5/attachment-0001.html>
More information about the Secure-testing-commits
mailing list