[Secure-testing-commits] r54113 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-07-31 04:19:48 +0000 (Mon, 31 Jul 2017)
New Revision: 54113

Modified:
   data/CVE/list
Log:
Add CVE-2017-11755/imagemagick

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-07-30 21:19:07 UTC (rev 54112)
+++ data/CVE/list	2017-07-31 04:19:48 UTC (rev 54113)
@@ -1,7 +1,9 @@
 CVE-2017-11756 (In Earcms Ear Music through 4.1 build 20170710, remote authenticated ...)
 	TODO: check
 CVE-2017-11755 (The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/634
+	TODO: check, possibly fixed by same commit as issue #631 upstream
 CVE-2017-11754 (The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 ...)
 	TODO: check
 CVE-2017-11753 (The GetImageDepth function in MagickCore/attribute.c in ImageMagick ...)