[Secure-testing-commits] r53974 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Thu Jul 27 06:21:51 UTC 2017
Author: carnil
Date: 2017-07-27 06:21:51 +0000 (Thu, 27 Jul 2017)
New Revision: 53974
Modified:
data/CVE/list
Log:
Add one more imagemagick entry, three fixes in recent unstable upload
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-27 06:15:08 UTC (rev 53973)
+++ data/CVE/list 2017-07-27 06:21:51 UTC (rev 53974)
@@ -1,3 +1,9 @@
+CVE-2017-XXXX [crash in jp2 codec]
+ - imagemagick 8:6.9.7.4+dfsg-13 (bug #869830)
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/501
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/acee073df34aa4d491bf5cb74d3a15fc80f0a3aa
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/ac23b02ecb741e5de60f5235ea443790c88a0b80
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/b0c5222ce31e8f941fa02ff9c7a040fb2db30dbc
CVE-2017-11691 [Cross-site scripting (XSS) vulnerability in auth_profile.php]
- cacti <unfixed> (bug #869848)
[stretch] - cacti <not-affected> (Vulnerable code introduced later with addition of user profile management page for users)
@@ -144,7 +150,7 @@
- imagemagick 8:6.9.7.4+dfsg-13 (bug #869728)
NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31438
CVE-2017-XXXX [Memory exhaustion in mpc coder]
- - imagemagick <unfixed> (bug #869727)
+ - imagemagick 8:6.9.7.4+dfsg-13 (bug #869727)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/546
CVE-2017-XXXX [memory leak in quantize]
- imagemagick 8:6.9.7.4+dfsg-13 (bug #869722)
@@ -370,12 +376,12 @@
NOTE: https://github.com/ImageMagick/ImageMagick/commit/2bbc1b96f0d9371df675fdf7b8fc9bd4a42ae9cd
NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/bac384563f557d1ac7413d2eaec00dd59c3cc29b
CVE-2017-11536 (When ImageMagick 7.0.6-1 processes a crafted file in convert, it can ...)
- - imagemagick <unfixed> (bug #869831)
+ - imagemagick 8:6.9.7.4+dfsg-13 (bug #869831)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/567
NOTE: https://github.com/ImageMagick/ImageMagick/commit/167e1538ae9818d46c9462a4273082871e35a480
NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/dba1ccfbcdf61c0eb599c7c308b42ed46dc92be6
CVE-2017-11535 (When ImageMagick 7.0.6-1 processes a crafted file in convert, it can ...)
- - imagemagick <unfixed> (bug #869827)
+ - imagemagick 8:6.9.7.4+dfsg-13 (bug #869827)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/561
NOTE: https://github.com/ImageMagick/ImageMagick/commit/b8647f11ddfd6f85a6cc39654c7e78c2bc6412e4
NOTE: Imagemagick-6: https://github.com/ImageMagick/ImageMagick/commit/bba95cfcc19fa8a261e12692f31279148ad42441
@@ -389,7 +395,7 @@
NOTE: https://github.com/ImageMagick/ImageMagick/commit/f0c29cc251578fe0ad8ec7b72f2487a77a1696b8
NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/ed1fd69231ab21dc540167c63bc3b0fa3282ec59
CVE-2017-11532 (When ImageMagick 7.0.6-1 processes a crafted file in convert, it can ...)
- - imagemagick <unfixed> (bug #869726)
+ - imagemagick 8:6.9.7.4+dfsg-13 (bug #869726)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/563
NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/d60d705cddac7fa5d0e6596c183bbb9b46a57161
CVE-2017-11531 (When ImageMagick 7.0.6-1 processes a crafted file in convert, it can ...)
More information about the Secure-testing-commits
mailing list