[Secure-testing-commits] r57141 - in data: . CVE
Antoine Beaupré
anarcat at moszumanska.debian.org
Mon Oct 30 19:54:39 UTC 2017
Author: anarcat
Date: 2017-10-30 19:54:39 +0000 (Mon, 30 Oct 2017)
New Revision: 57141
Modified:
data/CVE/list
data/dla-needed.txt
Log:
triage imagemagick/CVE-2017-14528 away from jessie/wheezy, claim GM
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-30 19:45:58 UTC (rev 57140)
+++ data/CVE/list 2017-10-30 19:54:39 UTC (rev 57141)
@@ -4709,6 +4709,8 @@
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=dcaaca89e8618eba35193c27afcb1cfa54f74582
CVE-2017-14528 (The TIFFSetProfiles function in coders/tiff.c in ImageMagick 7.0.6 has ...)
- imagemagick <unfixed> (bug #878544)
+ [wheezy] - imagemagick <not-affected> (Can't reproduce crash with file)
+ [jessie] - imagemagick <not-affected> (Can't reproduce crash with file)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2730
NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=32560
CVE-2017-14527 (Multiple XML external entity (XXE) vulnerabilities in the OpenText ...)
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2017-10-30 19:45:58 UTC (rev 57140)
+++ data/dla-needed.txt 2017-10-30 19:54:39 UTC (rev 57141)
@@ -14,13 +14,11 @@
NOTE: 20170719: maintainer will handle the upload, see https://lists.debian.org/d0b9674a-ac5b-5cc9-1982-fb6f36155c5a@pbandjelly.org
NOTE: 20171013: anarcat pinged maintainer: https://lists.debian.org/87efpuc95w.fsf@curie.anarc.at
--
-graphicsmagick
+graphicsmagick (anarcat)
--
icedove
NOTE: Guido Gunter has promised to handle this once a version is available for sid.
--
-imagemagick (anarcat)
---
irssi (Rhonda D'Vine)
--
jasperreports
More information about the Secure-testing-commits
mailing list