[Secure-testing-commits] r53150 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Jul 3 19:13:43 UTC 2017


Author: carnil
Date: 2017-07-03 19:13:43 +0000 (Mon, 03 Jul 2017)
New Revision: 53150

Modified:
   data/CVE/list
Log:
Add bug reference to CVE-2017-10800/graphicsmagick

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-03 18:39:37 UTC (rev 53149)
+++ data/CVE/list	2017-07-03 19:13:43 UTC (rev 53150)
@@ -1,8 +1,12 @@
 CVE-2017-10801
 	RESERVED
 CVE-2017-10800 (When GraphicsMagick 1.3.25 processes a MATLAB image in coders/mat.c, it ...)
-	- graphicsmagick <unfixed>
+	- graphicsmagick <unfixed> (bug #867060)
 	NOTE: http://hg.code.sf.net/p/graphicsmagick/code/rev/e5761e3a2012
+	NOTE: The above commit unfortunately is not enough. There are more related
+	NOTE: changes, and Bob Friesenhahn commented that it's not complete. All 
+	NOTE: the rlated changesets to mat.c since the one referenced should be
+	NOTE: picked up.
 CVE-2017-10799 (When GraphicsMagick 1.3.25 processes a DPX image (with metadata ...)
 	- graphicsmagick <unfixed>
 	NOTE: http://hg.code.sf.net/p/graphicsmagick/code/rev/f10b9bb3ca62




More information about the Secure-testing-commits mailing list