[Secure-testing-commits] r54072 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun Jul 30 13:29:25 UTC 2017
Author: apo
Date: 2017-07-30 13:29:25 +0000 (Sun, 30 Jul 2017)
New Revision: 54072
Modified:
data/CVE/list
Log:
CVE-2017-10794,graphicsmagick: Wheezy is not affected
The QuantumTransferMode function does not accept samples_per_pixel in Wheezy.
There is no need for comparisons and an overflow will not occur.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-30 12:20:59 UTC (rev 54071)
+++ data/CVE/list 2017-07-30 13:29:25 UTC (rev 54072)
@@ -2716,6 +2716,7 @@
NOT-FOR-US: Subrion CMS
CVE-2017-10794 (When GraphicsMagick 1.3.25 processes an RGB TIFF picture (with metadata ...)
- graphicsmagick 1.3.26-1 (bug #867085)
+ [wheezy] - graphicsmagick <not-affected> (vulnerable code not present)
NOTE: http://hg.code.sf.net/p/graphicsmagick/code/rev/a20bee0a0ad2
CVE-2017-10793
RESERVED
More information about the Secure-testing-commits
mailing list