[Secure-testing-commits] r48083 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jan 15 14:27:19 UTC 2017
Author: carnil
Date: 2017-01-15 14:27:18 +0000 (Sun, 15 Jan 2017)
New Revision: 48083
Modified:
data/CVE/list
Log:
Add two new imagemagick issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-01-15 12:47:40 UTC (rev 48082)
+++ data/CVE/list 2017-01-15 14:27:18 UTC (rev 48083)
@@ -1,3 +1,9 @@
+CVE-2017-XXXX [ipl file missing malloc check]
+ - imagemagick <unfixed> (bug #851485)
+ NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/97566cf2806c0a5a86e884c96831a0c3b1ec6c20
+CVE-2017-XXXX [wpg file off by one]
+ - imagemagick <unfixed> (bug #851483)
+ NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/d23beebe7b1179fb75db1e85fbca3100e49593d9
CVE-2017-5487 [WordPress 4.7 - User Information Disclosure via REST API]
- wordpress 4.7.1+dfsg-1 (bug #851310)
NOTE: http://www.openwall.com/lists/oss-security/2017/01/14/1
More information about the Secure-testing-commits
mailing list