[Secure-testing-commits] r55601 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Sat Sep 9 09:33:59 UTC 2017
Author: carnil
Date: 2017-09-09 09:33:59 +0000 (Sat, 09 Sep 2017)
New Revision: 55601
Modified:
data/CVE/list
Log:
Add CVE-2017-14224/imagemagick
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-09 09:33:48 UTC (rev 55600)
+++ data/CVE/list 2017-09-09 09:33:59 UTC (rev 55601)
@@ -18,7 +18,10 @@
- ffmpeg <unfixed>
NOTE: https://github.com/FFmpeg/FFmpeg/commit/837cb4325b712ff1aab531bf41668933f61d75d2
CVE-2017-14224 (A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ...)
- TODO: check
+ - imagemagick <unfixed>
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/733
+ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/7f2d6fe34d695d3445e2d50937db5541a1b76bde
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/c6409227c430f114b6425337e64b848535b62e0b
CVE-2017-14223 (In libavformat/asfdec_f.c in FFmpeg 3.3.3, a DoS in ...)
TODO: check
CVE-2017-14222 (In libavformat/mov.c in FFmpeg 3.3.3, a DoS in read_tfra() due to lack ...)
More information about the Secure-testing-commits
mailing list