[Secure-testing-commits] r51851 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon May 22 20:37:48 UTC 2017
Author: jmm
Date: 2017-05-22 20:37:48 +0000 (Mon, 22 May 2017)
New Revision: 51851
Modified:
data/CVE/list
Log:
drop no-dsa for issues which will be included in imagemagick DSA
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-05-22 20:35:21 UTC (rev 51850)
+++ data/CVE/list 2017-05-22 20:37:48 UTC (rev 51851)
@@ -818,7 +818,6 @@
NOTE: https://bugzilla.kernel.org/show_bug.cgi?id=195559
CVE-2017-8830 (In ImageMagick 7.0.5-6, the ReadBMPImage function in bmp.c:1379 allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (low; bug #862637)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/467
CVE-2017-8828
RESERVED
@@ -1010,7 +1009,6 @@
RESERVED
CVE-2017-8765 (The function named ReadICONImage in coders\icon.c in ImageMagick ...)
- imagemagick 8:6.9.7.4+dfsg-7 (low; bug #862653)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/466
CVE-2017-8764
RESERVED
@@ -1968,63 +1966,48 @@
NOTE: Introduced by: https://github.com/LibreOffice/core/commit/ceb53ad9f34ae05d09f61845d581546eac0c6d60
CVE-2017-8357 (In ImageMagick 7.0.5-5, the ReadEPTImage function in ept.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862636)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/453
CVE-2017-8356 (In ImageMagick 7.0.5-5, the ReadSUNImage function in sun.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862635)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/449
CVE-2017-8355 (In ImageMagick 7.0.5-5, the ReadMTVImage function in mtv.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862634)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/450
CVE-2017-8354 (In ImageMagick 7.0.5-5, the ReadBMPImage function in bmp.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862633)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/451
CVE-2017-8353 (In ImageMagick 7.0.5-5, the ReadPICTImage function in pict.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862632)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/454
CVE-2017-8352 (In ImageMagick 7.0.5-5, the ReadXWDImage function in xwd.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862590)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/452
CVE-2017-8351 (In ImageMagick 7.0.5-5, the ReadPCDImage function in pcd.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862589)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/448
CVE-2017-8350 (In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862587)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/447
CVE-2017-8349 (In ImageMagick 7.0.5-5, the ReadSFWImage function in sfw.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862579)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/443
CVE-2017-8348 (In ImageMagick 7.0.5-5, the ReadMATImage function in mat.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862578)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/445
CVE-2017-8347 (In ImageMagick 7.0.5-5, the ReadEXRImage function in exr.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862577)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/441
CVE-2017-8346 (In ImageMagick 7.0.5-5, the ReadDCMImage function in dcm.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862575)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/440
CVE-2017-8345 (In ImageMagick 7.0.5-5, the ReadMNGImage function in png.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862573)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/442
CVE-2017-8344 (In ImageMagick 7.0.5-5, the ReadPCXImage function in pcx.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862574)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/446
CVE-2017-8343 (In ImageMagick 7.0.5-5, the ReadAAIImage function in aai.c allows ...)
- imagemagick 8:6.9.7.4+dfsg-7 (bug #862572)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/444
CVE-2017-8341
RESERVED
@@ -3023,7 +3006,6 @@
NOT-FOR-US: XOOPS
CVE-2017-7943 (The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote ...)
- imagemagick 8:6.9.7.4+dfsg-6 (low; bug #860736)
- [jessie] - imagemagick <no-dsa> (Minor issue)
[wheezy] - imagemagick <no-dsa> (Minor issue)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/427
CVE-2017-7942 (The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote ...)
@@ -3033,7 +3015,6 @@
NOTE: https://github.com/ImageMagick/ImageMagick/issues/429
CVE-2017-7941 (The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote ...)
- imagemagick 8:6.9.7.4+dfsg-6 (low; bug #860734)
- [jessie] - imagemagick <no-dsa> (Minor issue)
[wheezy] - imagemagick <no-dsa> (Minor issue)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/428
CVE-2017-7940 (The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ...)
@@ -4117,13 +4098,11 @@
CVE-2017-7619 (In ImageMagick 7.0.4-9, an infinite loop can occur because of a ...)
{DLA-902-1}
- imagemagick 8:6.9.7.4+dfsg-4 (bug #859769)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31506
NOTE: Fixed by: http://git.imagemagick.org/repos/ImageMagick/commit/63757068c803f692bd70304b06ce3406e0b67c7f
CVE-2017-7606 (coders/rle.c in ImageMagick 7.0.5-4 has an "outside the range of ...)
{DLA-902-1}
- imagemagick 8:6.9.7.4+dfsg-4 (bug #859771)
- [jessie] - imagemagick <no-dsa> (Can be postponed until more severe issue are around)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/415
NOTE: https://blogs.gentoo.org/ago/2017/04/02/imagemagick-undefined-behavior-in-codersrle-c/
CVE-2017-7591 (OpenIDM through 4.0.0 and 4.5.0 is vulnerable to reflected cross-site ...)
More information about the Secure-testing-commits
mailing list