[Secure-testing-commits] r55849 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Sep 18 09:13:21 UTC 2017
Author: carnil
Date: 2017-09-18 09:13:21 +0000 (Mon, 18 Sep 2017)
New Revision: 55849
Modified:
data/CVE/list
Log:
Add CVE-2017-14533/imagemagick
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-18 09:10:15 UTC (rev 55848)
+++ data/CVE/list 2017-09-18 09:13:21 UTC (rev 55849)
@@ -93,7 +93,10 @@
CVE-2017-14534 (Cross Site Scripting (XSS) exists in NexusPHP 1.5.beta5.20120707 via ...)
TODO: check
CVE-2017-14533 (ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in coders/mat.c. ...)
- TODO: check
+ - imagemagick <unfixed> (unimportant)
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/648
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/f1f2089e79bcf5714cefba7cdc47049b4ac53c6b
+ NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/bdfc5538051ad0d1c2083ba2a29180ff6abea907
CVE-2017-14532 (ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in ...)
TODO: check
CVE-2017-14531 (ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in ...)
More information about the Secure-testing-commits
mailing list