[Secure-testing-commits] r55459 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-09-05 10:16:07 +0000 (Tue, 05 Sep 2017)
New Revision: 55459

Modified:
   data/CVE/list
Log:
Add CVE-2017-14138/imagemagick

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-05 10:14:38 UTC (rev 55458)
+++ data/CVE/list	2017-09-05 10:16:07 UTC (rev 55459)
@@ -29,7 +29,8 @@
 	NOTE: Requires: https://github.com/ImageMagick/ImageMagick/commit/d426a1dc84cfdafdac67bdb2a1ecc6e1798053e6
 	NOTE: Requires: https://github.com/ImageMagick/ImageMagick/commit/0dfce0579c881245e495aa2d8d114e63b96a860e
 CVE-2017-14138 (ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/639
 CVE-2017-14137 (ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has a issue where ...)
 	TODO: check
 CVE-2017-14136 (OpenCV (Open Source Computer Vision Library) 3.3 has an out-of-bounds ...)