[Secure-testing-commits] r51835 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon May 22 15:21:16 UTC 2017
Author: carnil
Date: 2017-05-22 15:21:16 +0000 (Mon, 22 May 2017)
New Revision: 51835
Modified:
data/CVE/list
Log:
CVE's assigned for imagemagick issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-22 14:52:49 UTC (rev 51834)
+++ data/CVE/list 2017-05-22 15:21:16 UTC (rev 51835)
@@ -1,15 +1,18 @@
-CVE-2017-XXXX [Check for EOF conditions for RLE image format]
+CVE-2017-9144 [Check for EOF conditions for RLE image format]
- imagemagick <unfixed> (bug #863126)
NOTE: https://github.com/ImageMagick/ImageMagick/commit/7fdf9ea808caa3c81a0eb42656e5fafc59084198
-CVE-2017-XXXX [A crafted file revealed an assertion failure in blob.c]
+CVE-2017-9142 [A crafted file revealed an assertion failure in blob.c]
- imagemagick <unfixed> (bug #863125)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/490
-CVE-2017-XXXX [A crafted file revealed an assertion failure in profile.c]
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/72f5c8632bff2daf3c95005f9b4cf2982786b52a
+CVE-2017-9141 [A crafted file revealed an assertion failure in profile.c]
- imagemagick <unfixed> (bug #863124)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/489
-CVE-2017-XXXX [Specially crafted arts file could lead to memory leak]
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/f5910e91b0778e03ded45b9022be8eb8f77942cd
+CVE-2017-9143 [Specially crafted arts file could lead to memory leak]
- imagemagick <unfixed> (bug #863123)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/456
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/7b8c1df65b25d6671f113e2306982eded44ce3b4
CVE-2017-9140 (Cross-site scripting (XSS) vulnerability in Telerik Reporting for ...)
TODO: check
CVE-2017-9139 (There is a stack-based buffer overflow on some Tenda routers ...)
More information about the Secure-testing-commits
mailing list