[Secure-testing-commits] r55354 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Sep 1 05:12:35 UTC 2017
Author: carnil
Date: 2017-09-01 05:12:35 +0000 (Fri, 01 Sep 2017)
New Revision: 55354
Modified:
data/CVE/list
Log:
Add CVE-2017-14060/imagemagick
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-01 05:12:25 UTC (rev 55353)
+++ data/CVE/list 2017-09-01 05:12:35 UTC (rev 55354)
@@ -37,7 +37,10 @@
- libidn <not-affected> (Vulnerable code not present)
NOTE: https://gitlab.com/libidn/libidn2/commit/16853b6973a1e72fee2b7cccda85472cb9951305
CVE-2017-14060 (In ImageMagick 7.0.6-10, a NULL Pointer Dereference issue is present in ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/710
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/c535e1f1a6b1faaa35e007df4fc535ec08daa97c
+ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/5bdfef29f5e6744f36f25ec04583c6b6f4a13b48
CVE-2017-14059 (In FFmpeg 3.3.3, a DoS in cine_read_header() due to lack of an EOF ...)
TODO: check
CVE-2017-14058 (In FFmpeg 3.3.3, the read_data function in libavformat/hls.c does not ...)
More information about the Secure-testing-commits
mailing list