[Secure-testing-commits] r55961 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Thu Sep 21 09:19:19 UTC 2017


Author: carnil
Date: 2017-09-21 09:19:19 +0000 (Thu, 21 Sep 2017)
New Revision: 55961

Modified:
   data/CVE/list
Log:
Add three new imagemagick issues

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-09-21 09:12:42 UTC (rev 55960)
+++ data/CVE/list	2017-09-21 09:19:19 UTC (rev 55961)
@@ -16,11 +16,19 @@
 CVE-2017-14627
 	RESERVED
 CVE-2017-14626 (ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/720
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/721
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/90b301db18434b2c2228776d06c2898b5fed74f0
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/cc797c296c30f3ec31cd02418b58a2c27549b0a9
 CVE-2017-14625 (ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/721
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/cc797c296c30f3ec31cd02418b58a2c27549b0a9
 CVE-2017-14624 (ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/722
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/9ff805077fd5297dc41dc989f9dba59877e12f97
 CVE-2017-14623 (In the ldap.v2 (aka go-ldap) package through 2.5.0 for Go, an attacker ...)
 	TODO: check
 CVE-2017-14622




More information about the Secure-testing-commits mailing list