[Secure-testing-commits] r53531 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sun Jul 16 08:34:42 UTC 2017
Author: carnil
Date: 2017-07-16 08:34:42 +0000 (Sun, 16 Jul 2017)
New Revision: 53531
Modified:
data/CVE/list
Log:
Remove no-dsa tagged entries for imagemagick enties which will be included in next upload
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-16 08:34:32 UTC (rev 53530)
+++ data/CVE/list 2017-07-16 08:34:42 UTC (rev 53531)
@@ -4589,14 +4589,12 @@
{DLA-1000-1}
- imagemagick 8:6.9.7.4+dfsg-12 (low; bug #867721)
[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
- [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/491
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/01843366d6a7b96e22ad7bb67f3df7d9fd4d5d74
CVE-2017-9500 (In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the ...)
{DLA-1000-1}
- imagemagick 8:6.9.7.4+dfsg-12 (low; bug #867778)
[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
- [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/500
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/5d95b4c24a964114e2b1ae85c2b36769251ed11d
NOTE: Fixed by (6.x): https://github.com/ImageMagick/ImageMagick/commit/837085e7725f6eb591eb019e299c1ddcf34b9a79
@@ -4757,7 +4755,6 @@
CVE-2017-9440 (In ImageMagick 7.0.5-5, a memory leak was found in the function ...)
- imagemagick 8:6.9.7.4+dfsg-12 (low; bug #864273)
[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
- [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
[wheezy] - imagemagick <not-affected> (vulnerable code not present)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/462
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/c2be129c25763680afeca59f4de5d6d4240ca2cf
@@ -4765,7 +4762,6 @@
{DLA-1000-1}
- imagemagick 8:6.9.7.4+dfsg-12 (low; bug #864274)
[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
- [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/460
NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/6c6abed989ea4a3ef472db65ab487c1809a3a718
CVE-2017-9438 (libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers ...)
@@ -4849,7 +4845,6 @@
CVE-2017-9409 (In ImageMagick 7.0.5-5, the ReadMPCImage function in mpc.c allows ...)
{DLA-1000-1}
- imagemagick 8:6.9.7.4+dfsg-11 (low; bug #864090)
- [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/458
CVE-2017-9408 (In Poppler 0.54.0, a memory leak vulnerability was found in the ...)
- poppler <unfixed> (low; bug #864009)
@@ -4861,7 +4856,6 @@
CVE-2017-9407 (In ImageMagick 7.0.5-5, the ReadPALMImage function in palm.c allows ...)
{DLA-1000-1}
- imagemagick 8:6.9.7.4+dfsg-11 (low; bug #864089)
- [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/459
CVE-2017-9406 (In Poppler 0.54.0, a memory leak vulnerability was found in the ...)
- poppler <unfixed> (low; bug #864010)
@@ -5427,13 +5421,11 @@
CVE-2017-9262 (In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c ...)
{DLA-1000-1}
- imagemagick 8:6.9.7.4+dfsg-10 (low; bug #863834)
- [jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/475
NOTE: https://github.com/ImageMagick/ImageMagick/commit/4649578df8dcbfb2b08d8623d52486dc124da3a8
CVE-2017-9261 (In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c ...)
{DLA-1000-1}
- imagemagick 8:6.9.7.4+dfsg-10 (low; bug #863833)
- [jessie] - imagemagick <no-dsa> (Minor issue)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/476
NOTE: https://github.com/ImageMagick/ImageMagick/commit/01d522e990aa57cbe67d222dd5e8f7196cc6d199
CVE-2017-9260
More information about the Secure-testing-commits
mailing list