[Secure-testing-commits] r52520 - data/CVE

[Moritz Muehlenhoff]

Author: jmm
Date: 2017-06-12 19:09:37 +0000 (Mon, 12 Jun 2017)
New Revision: 52520

Modified:
   data/CVE/list
Log:
imagemagick no-dsa
dolibarr no-dsa


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-06-12 18:47:11 UTC (rev 52519)
+++ data/CVE/list	2017-06-12 19:09:37 UTC (rev 52520)
@@ -284,11 +284,15 @@
 	NOT-FOR-US: BigTree CMS
 CVE-2017-9440 (In ImageMagick 7.0.5-5, a memory leak was found in the function ...)
 	- imagemagick <unfixed> (low; bug #864273)
+	[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
+	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	[wheezy] - imagemagick <not-affected> (vulnerable code not present)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/462
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/c2be129c25763680afeca59f4de5d6d4240ca2cf
 CVE-2017-9439 (In ImageMagick 7.0.5-5, a memory leak was found in the function ...)
 	- imagemagick <unfixed> (low; bug #864274)
+	[stretch] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
+	[jessie] - imagemagick <no-dsa> (Minor issue, wait until more severe issues arise)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/460
 	NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/6c6abed989ea4a3ef472db65ab487c1809a3a718
 CVE-2017-9438 (libyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers ...)
@@ -303,6 +307,8 @@
 	NOT-FOR-US: TeamPass
 CVE-2017-9435 (Dolibarr ERP/CRM before 5.0.3 is vulnerable to a SQL injection in ...)
 	- dolibarr <unfixed> (bug #864569)
+	[stretch] - dolibarr <no-dsa> (Minor issue)
+	[jessie] - dolibarr <no-dsa> (Minor issue)
 	NOTE: https://github.com/Dolibarr/dolibarr/commit/70636cc59ffa1ffbc0ce3dba315d7d9b837aad04
 CVE-2017-9434 (Crypto++ (aka cryptopp) through 5.6.5 contains an out-of-bounds read ...)
 	- libcrypto++ 5.6.4-7 (bug #864214)