[Secure-testing-commits] r53743 - in data: CVE DSA

Salvatore Bonaccorso carnil at moszumanska.debian.org
Fri Jul 21 12:38:34 UTC 2017 

Author: carnil
Date: 2017-07-21 12:38:34 +0000 (Fri, 21 Jul 2017)
New Revision: 53743

Modified:
   data/CVE/list
   data/DSA/list
Log:
CVE-2017-9500 patch not added to imagemagick, thanks mdeslaur

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-21 10:57:19 UTC (rev 53742)
+++ data/CVE/list	2017-07-21 12:38:34 UTC (rev 53743)
@@ -5269,8 +5269,8 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/491
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/01843366d6a7b96e22ad7bb67f3df7d9fd4d5d74
 CVE-2017-9500 (In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the ...)
-	{DSA-3914-1 DLA-1000-1}
-	- imagemagick 8:6.9.7.4+dfsg-12 (low; bug #867778)
+	{DLA-1000-1}
+	- imagemagick <unfixed> (low; bug #867778)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/500
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/5d95b4c24a964114e2b1ae85c2b36769251ed11d
 	NOTE: Fixed by (6.x): https://github.com/ImageMagick/ImageMagick/commit/837085e7725f6eb591eb019e299c1ddcf34b9a79

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2017-07-21 10:57:19 UTC (rev 53742)
+++ data/DSA/list	2017-07-21 12:38:34 UTC (rev 53743)
@@ -2,7 +2,7 @@
 	{CVE-2017-1000026}
 	[stretch] - ruby-mixlib-archive 0.2.0-1+deb9u1
 [18 Jul 2017] DSA-3914-1 imagemagick - security update
-	{CVE-2017-9439 CVE-2017-9440 CVE-2017-9500 CVE-2017-9501 CVE-2017-10928 CVE-2017-11141 CVE-2017-11170 CVE-2017-11188 CVE-2017-11360 CVE-2017-11352 CVE-2017-11449 CVE-2017-11448 CVE-2017-11447 CVE-2017-11450 CVE-2017-11478}
+	{CVE-2017-9439 CVE-2017-9440 CVE-2017-9501 CVE-2017-10928 CVE-2017-11141 CVE-2017-11170 CVE-2017-11188 CVE-2017-11360 CVE-2017-11352 CVE-2017-11449 CVE-2017-11448 CVE-2017-11447 CVE-2017-11450 CVE-2017-11478}
 	[jessie] - imagemagick 8:6.8.9.9-5+deb8u10
 	[stretch] - imagemagick 8:6.9.7.4+dfsg-11+deb9u1
 [18 Jul 2017] DSA-3913-1 apache2 - security update

More information about the Secure-testing-commits mailing list