[Secure-testing-commits] r55386 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Sep 2 12:25:08 UTC 2017
Author: carnil
Date: 2017-09-02 12:25:08 +0000 (Sat, 02 Sep 2017)
New Revision: 55386
Modified:
data/CVE/list
Log:
Add three new imagemagick issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-02 09:17:47 UTC (rev 55385)
+++ data/CVE/list 2017-09-02 12:25:08 UTC (rev 55386)
@@ -3924,11 +3924,20 @@
NOTE: https://curl.haxx.se/CVE-2017-1000099.patch
NOTE: Introduced by: https://github.com/curl/curl/commit/7c312f84ea930d8
CVE-2017-12693 (The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/652
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/75fcbf5d649bba046c6a0db650a518f7bfc0fb3f
+ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/6709bd585b9609a9cf98a7042089f3e725886d5e
CVE-2017-12692 (The ReadVIFFImage function in coders/viff.c in ImageMagick 7.0.6-6 ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/653
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/4a25fe5447bfb3a1918a2e9d595928e853b09d2e
+ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/5919dc606bc1d6022d3d2d205a91fdbe98de9e15
CVE-2017-12691 (The ReadOneLayer function in coders/xcf.c in ImageMagick 7.0.6-6 ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/656
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/f1ea048a3a34df293764502401d966aeacf9179d
+ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/68bbe7b8b226ed79e339296793f68f1b2bebc519
CVE-2017-12690
RESERVED
CVE-2017-12689
More information about the Secure-testing-commits
mailing list