[Secure-testing-commits] r55868 - data/CVE

[Salvatore Bonaccorso]

Author: carnil
Date: 2017-09-18 12:50:28 +0000 (Mon, 18 Sep 2017)
New Revision: 55868

Modified:
   data/CVE/list
Log:
Update information for CVE-2017-14249

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-18 12:34:32 UTC (rev 55867)
+++ data/CVE/list	2017-09-18 12:50:28 UTC (rev 55868)
@@ -832,7 +832,7 @@
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/2071d67ebf729f76d73c33c1152df4816d1d79ac
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/66112b7a7b64f688efe6fec53a829874a74dea04
 CVE-2017-14248 (A heap-based buffer over-read in SampleImage() in MagickCore/resize.c ...)
-	- imagemagick <unfixed> (low)
+	- imagemagick <not-affected> (Vulnerable code introduced later)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/717
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/c5402b6e0fcf8b694ae2af6a6652ebb8ce0ccf46
 CVE-2017-14247 (SQL Injection exists in the EyesOfNetwork web interface (aka eonweb) ...)