[Secure-testing-commits] r52186 - data/CVE

Thu Jun 1 14:32:21 UTC 2017

Author: carnil
Date: 2017-06-01 14:32:20 +0000 (Thu, 01 Jun 2017)
New Revision: 52186

Modified:
   data/CVE/list
Log:
Add fixed versions for CVE-2017-926{1,2}/imagemagick, #863833, #863834

Modified: data/CVE/list
===================================================================

--- data/CVE/list	2017-06-01 14:26:37 UTC (rev 52185)
+++ data/CVE/list	2017-06-01 14:32:20 UTC (rev 52186)
@@ -343,11 +343,11 @@
 	[wheezy] - openvswitch <not-affected> (No controllers implemented, cf. #863655)
 	NOTE: https://mail.openvswitch.org/pipermail/ovs-dev/2017-May/332966.html
 CVE-2017-9262 (In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c ...)
-	- imagemagick <unfixed> (low; bug #863834)
+	- imagemagick 8:6.9.7.4+dfsg-10 (low; bug #863834)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/475
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/4649578df8dcbfb2b08d8623d52486dc124da3a8
 CVE-2017-9261 (In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c ...)
-	- imagemagick <unfixed> (low; bug #863833)
+	- imagemagick 8:6.9.7.4+dfsg-10 (low; bug #863833)
 	[jessie] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/476
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/01d522e990aa57cbe67d222dd5e8f7196cc6d199


