[Secure-testing-commits] r55845 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-09-18 06:11:52 +0000 (Mon, 18 Sep 2017)
New Revision: 55845

Modified:
   data/CVE/list
Log:
Add CVE-2017-14504

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-18 06:09:41 UTC (rev 55844)
+++ data/CVE/list	2017-09-18 06:11:52 UTC (rev 55845)
@@ -8,7 +8,10 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/6ad5fc3c9b652eec27fc0b1a0817159f8547d5d9
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/f7b0cf098bc800c5b6181dc522a99997bfee8948
 CVE-2017-14504 (ReadPNMImage in coders/pnm.c in GraphicsMagick 1.3.26 does not ensure ...)
-	TODO: check
+	- graphicsmagick <unfixed>
+	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=fb09ca6dd22c
+	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/465/
+	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/466/
 CVE-2017-14503 (libarchive 3.3.2 suffers from an out-of-bounds read within ...)
 	- libarchive <unfixed> (bug #875960)
 	[stretch] - libarchive <no-dsa> (Minor issue)