[Secure-testing-commits] r53311 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sat Jul 8 21:50:54 UTC 2017


Author: carnil
Date: 2017-07-08 21:50:53 +0000 (Sat, 08 Jul 2017)
New Revision: 53311

Modified:
   data/CVE/list
Log:
Update information for CVE-2017-9499

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-08 21:44:38 UTC (rev 53310)
+++ data/CVE/list	2017-07-08 21:50:53 UTC (rev 53311)
@@ -3773,10 +3773,7 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/500
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/5d95b4c24a964114e2b1ae85c2b36769251ed11d
 CVE-2017-9499 (In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the ...)
-	- imagemagick <unfixed> (low)
-	[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
-	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
-	[wheezy] - imagemagick <not-affected> (vulnerable code not present)
+	- imagemagick <not-affected> (Vulnerable code introduced later, only affects ImageMagick 7.x)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/492
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/7fd419441bc7103398e313558171d342c6315f44
 CVE-2017-9498




More information about the Secure-testing-commits mailing list