[Secure-testing-commits] r57215 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Nov 1 21:17:29 UTC 2017
Author: carnil
Date: 2017-11-01 21:17:29 +0000 (Wed, 01 Nov 2017)
New Revision: 57215
Modified:
data/CVE/list
Log:
Add CVE-2017-16353
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-11-01 21:17:17 UTC (rev 57214)
+++ data/CVE/list 2017-11-01 21:17:29 UTC (rev 57215)
@@ -311,7 +311,9 @@
CVE-2017-16354
RESERVED
CVE-2017-16353 (GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure ...)
- TODO: check
+ - graphicsmagick <unfixed>
+ NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=e4e1c2a581d8
+ NOTE: https://blogs.securiteam.com/index.php/archives/3494
CVE-2017-16352 (GraphicsMagick 1.3.26 is vulnerable to a heap-based buffer overflow ...)
TODO: check
CVE-2017-1001001 (PluXml version 5.6 is vulnerable to stored cross-site scripting ...)
More information about the Secure-testing-commits
mailing list