[Secure-testing-commits] r52039 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon May 29 04:25:09 UTC 2017 

Author: carnil
Date: 2017-05-29 04:25:09 +0000 (Mon, 29 May 2017)
New Revision: 52039

Modified:
   data/CVE/list
Log:
Remove no-dsa tags for imagemagick in wheezy for which DLA got released

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-05-29 02:17:43 UTC (rev 52038)
+++ data/CVE/list	2017-05-29 04:25:09 UTC (rev 52039)
@@ -3356,7 +3356,6 @@
 CVE-2017-7943 (The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote ...)
 	{DSA-3863-1}
 	- imagemagick 8:6.9.7.4+dfsg-6 (low; bug #860736)
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/427
 CVE-2017-7942 (The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote ...)
 	- imagemagick 8:6.9.7.4+dfsg-6 (low; bug #860735)
@@ -3366,7 +3365,6 @@
 CVE-2017-7941 (The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote ...)
 	{DSA-3863-1}
 	- imagemagick 8:6.9.7.4+dfsg-6 (low; bug #860734)
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/428
 CVE-2017-7940 (The iw_read_gif_file function in imagew-gif.c in libimageworsener.a in ...)
 	NOT-FOR-US: ImageWorsener
@@ -39397,7 +39395,6 @@
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
 CVE-2014-9841 (The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 ...)
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 CVE-2014-9842 (Memory leak in the ReadPSDLayers function in coders/psd.c in ...)
 	- imagemagick 8:6.8.9.9-4 (bug #773834)
 	[wheezy] - imagemagick <not-affected> (Leak in a code path that does not exist in this version)
@@ -74423,7 +74420,6 @@
 	[experimental] - imagemagick 8:6.9.1.2-1
 	- imagemagick 8:6.8.9.9-6 (low)
 	[jessie] - imagemagick 8:6.8.9.9-5+deb8u1
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/02/20/4
 	NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26933
@@ -74432,7 +74428,6 @@
 	[experimental] - imagemagick 8:6.9.1.2-1
 	- imagemagick 8:6.8.9.9-6 (low)
 	[jessie] - imagemagick 8:6.8.9.9-5+deb8u1
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/02/20/4
 	NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26932
@@ -74441,7 +74436,6 @@
 	[experimental] - imagemagick 8:6.9.1.2-1
 	- imagemagick 8:6.8.9.9-6
 	[jessie] - imagemagick 8:6.8.9.9-5+deb8u1
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/02/20/4
 	NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26931
@@ -74449,7 +74443,6 @@
 	[experimental] - imagemagick 8:6.9.1.2-1
 	- imagemagick 8:6.8.9.9-6
 	[jessie] - imagemagick 8:6.8.9.9-5+deb8u1
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 	NOTE: http://www.openwall.com/lists/oss-security/2015/02/20/4
 	NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26929
@@ -84473,7 +84466,6 @@
 CVE-2014-8716 (The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to ...)
 	{DLA-90-1}
 	- imagemagick 8:6.8.9.9-3 (bug #768494)
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 	NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26456
 CVE-2014-8714 (The dissect_write_structured_field function in ...)
@@ -84847,7 +84839,6 @@
 CVE-2014-8355 (PCX parser code in ImageMagick before 6.8.9-9 allows remote attackers ...)
 	{DLA-242-1}
 	- imagemagick 8:6.8.9.9-1 (bug #767240)
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://int21.de/cve/CVE-2014-8355-pcx-oob-heap-overflow.html
 	- graphicsmagick 1.3.20-3+deb8u1 (bug #778238)
@@ -84857,12 +84848,10 @@
 CVE-2014-8562 (DCM decode in ImageMagick before 6.8.9-9 allows remote attackers to ...)
 	{DLA-242-1}
 	- imagemagick 8:6.8.9.9-1 (bug #767240)
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 CVE-2014-8354 (The HorizontalFilter function in resize.c in ImageMagick before ...)
 	{DLA-242-1}
 	- imagemagick 8:6.8.9.9-1
-	[wheezy] - imagemagick <no-dsa> (Minor issue)
 	[squeeze] - imagemagick <no-dsa> (Minor issue)
 	NOTE: https://int21.de/cve/CVE-2014-8354-oob-heap-overflow.html
 CVE-2014-8561 [Remotely DOS: convert +profile regression enters infinite loop exhausting memory]

More information about the Secure-testing-commits mailing list