[Secure-testing-commits] r49698 - in data: CVE DSA
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Mar 15 07:22:43 UTC 2017
Author: carnil
Date: 2017-03-15 07:22:43 +0000 (Wed, 15 Mar 2017)
New Revision: 49698
Modified:
data/CVE/list
data/DSA/list
Log:
Add CVE-2016-10252/imagemagick
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-15 06:29:21 UTC (rev 49697)
+++ data/CVE/list 2017-03-15 07:22:43 UTC (rev 49698)
@@ -178,6 +178,9 @@
NOTE: https://github.com/mpruett/audiofile/issues/32
NOTE: https://blogs.gentoo.org/ago/2017/02/20/audiofile-heap-based-buffer-overflow-in-msadpcminitializecoefficients-msadpcm-cpp
NOTE: https://github.com/mpruett/audiofile/commit/c48e4c6503f7dabd41f11d4c9c7b7f8960e7f2c0
+CVE-2016-10252
+ - imagemagick 8:6.9.6.2+dfsg-2 (bug #857426)
+ NOTE: Fixed by: http://git.imagemagick.org/repos/ImageMagick/commit/6790815c75bdea0357df5564345847856e995d6b
CVE-2016-10251 [use of uninitialized value in jpc_pi_nextcprl (jpc_t2cod.c)]
RESERVED
- jasper <removed>
Modified: data/DSA/list
===================================================================
--- data/DSA/list 2017-03-15 06:29:21 UTC (rev 49697)
+++ data/DSA/list 2017-03-15 07:22:43 UTC (rev 49698)
@@ -2,7 +2,7 @@
{CVE-2017-3302 CVE-2017-3313}
[jessie] - mariadb-10.0 10.0.30-0+deb8u1
[13 Mar 2017] DSA-3808-1 imagemagick - security update
- {CVE-2017-6498 CVE-2017-6499 CVE-2017-6500}
+ {CVE-2016-10252 CVE-2017-6498 CVE-2017-6499 CVE-2017-6500}
[jessie] - imagemagick 8:6.8.9.9-5+deb8u8
[12 Mar 2017] DSA-3807-1 icoutils - security update
{CVE-2017-6009 CVE-2017-6010 CVE-2017-6011}
More information about the Secure-testing-commits
mailing list