[Secure-testing-commits] r56572 - data/CVE

Roberto C. Sanchez roberto at moszumanska.debian.org
Tue Oct 10 18:03:13 UTC 2017


Author: roberto
Date: 2017-10-10 18:03:13 +0000 (Tue, 10 Oct 2017)
New Revision: 56572

Modified:
   data/CVE/list
Log:
Note that CVE-2017-14624 does not affect imagemagick in wheezy

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-10-10 17:19:48 UTC (rev 56571)
+++ data/CVE/list	2017-10-10 18:03:13 UTC (rev 56572)
@@ -1565,6 +1565,7 @@
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/cc797c296c30f3ec31cd02418b58a2c27549b0a9
 CVE-2017-14624 (ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in ...)
 	- imagemagick <unfixed> (bug #877354)
+	[wheezy] - imagemagick <not-affected> (Vulnerable code not present)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/722
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/9ff805077fd5297dc41dc989f9dba59877e12f97
 CVE-2017-14623 (In the ldap.v2 (aka go-ldap) package through 2.5.0 for Go, an attacker ...)




More information about the Secure-testing-commits mailing list