[Secure-testing-commits] r56404 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Oct 4 13:53:41 UTC 2017


Author: carnil
Date: 2017-10-04 13:53:41 +0000 (Wed, 04 Oct 2017)
New Revision: 56404

Modified:
   data/CVE/list
Log:
Add CVE-2017-15015/imagemagick

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-04 13:49:35 UTC (rev 56403)
+++ data/CVE/list	2017-10-04 13:53:41 UTC (rev 56404)
@@ -69,7 +69,10 @@
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/8254d24b86a62803231773ecf54c707aef4a1457
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/27f8ba82ddd665ab41cef6588128f680cbd69905
 CVE-2017-15015 (ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/724
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/0cbb3b3b02e7af493a9aafa8f7e7d23fc70644e4
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/a0cef9db632ef8e1b9de4c463700c6a24d4f96ca
 CVE-2017-15014
 	RESERVED
 CVE-2017-15013




More information about the Secure-testing-commits mailing list