[Secure-testing-commits] r53811 - in data: CVE DSA

Salvatore Bonaccorso carnil at moszumanska.debian.org
Sun Jul 23 06:08:29 UTC 2017 

Author: carnil
Date: 2017-07-23 06:08:29 +0000 (Sun, 23 Jul 2017)
New Revision: 53811

Modified:
   data/CVE/list
   data/DSA/list
Log:
CVE-2017-11529 assigned for #867823

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-23 06:07:21 UTC (rev 53810)
+++ data/CVE/list	2017-07-23 06:08:29 UTC (rev 53811)
@@ -490,10 +490,8 @@
 	- tiff3 <removed>
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2715
 	NOTE: Fixed by: https://github.com/vadz/libtiff/commit/69bfeec247899776b1b396651adb47436e5f1556
-CVE-2017-XXXX [memory leak in ReadMATImage in mat.c]
+CVE-2017-11529 [memory leak in ReadMATImage in mat.c]
 	- imagemagick 8:6.9.7.4+dfsg-12 (bug #867823)
-	[stretch] - imagemagick 8:6.9.7.4+dfsg-11+deb9u1
-	[jessie] - imagemagick 8:6.8.9.9-5+deb8u10
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/525
 CVE-2017-11478 (The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through ...)
 	{DSA-3914-1}

Modified: data/DSA/list
===================================================================
--- data/DSA/list	2017-07-23 06:07:21 UTC (rev 53810)
+++ data/DSA/list	2017-07-23 06:08:29 UTC (rev 53811)
@@ -6,7 +6,7 @@
 	{CVE-2017-1000026}
 	[stretch] - ruby-mixlib-archive 0.2.0-1+deb9u1
 [18 Jul 2017] DSA-3914-1 imagemagick - security update
-	{CVE-2017-9439 CVE-2017-9440 CVE-2017-9501 CVE-2017-10928 CVE-2017-11141 CVE-2017-11170 CVE-2017-11188 CVE-2017-11360 CVE-2017-11449 CVE-2017-11448 CVE-2017-11447 CVE-2017-11450 CVE-2017-11478 CVE-2017-11505 CVE-2017-11524 CVE-2017-11525 CVE-2017-11526 CVE-2017-11527 CVE-2017-11528}
+	{CVE-2017-9439 CVE-2017-9440 CVE-2017-9501 CVE-2017-10928 CVE-2017-11141 CVE-2017-11170 CVE-2017-11188 CVE-2017-11360 CVE-2017-11449 CVE-2017-11448 CVE-2017-11447 CVE-2017-11450 CVE-2017-11478 CVE-2017-11505 CVE-2017-11524 CVE-2017-11525 CVE-2017-11526 CVE-2017-11527 CVE-2017-11528 CVE-2017-11529}
 	[jessie] - imagemagick 8:6.8.9.9-5+deb8u10
 	[stretch] - imagemagick 8:6.9.7.4+dfsg-11+deb9u1
 [18 Jul 2017] DSA-3913-1 apache2 - security update

More information about the Secure-testing-commits mailing list