[Secure-testing-commits] r56110 - data/CVE
Roberto C. Sanchez
roberto at moszumanska.debian.org
Mon Sep 25 03:29:35 UTC 2017
Author: roberto
Date: 2017-09-25 03:29:35 +0000 (Mon, 25 Sep 2017)
New Revision: 56110
Modified:
data/CVE/list
Log:
Note that CVE-2017-12876 does not affect imagemagick in wheezy
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-09-25 02:28:13 UTC (rev 56109)
+++ data/CVE/list 2017-09-25 03:29:35 UTC (rev 56110)
@@ -5264,6 +5264,7 @@
NOTE: ImageMagick-7: https://github.com/ImageMagick/ImageMagick/commit/04178de2247e353fc095846784b9a10fefdbf890
CVE-2017-12876 (Heap-based buffer overflow in enhance.c in ImageMagick before 7.0.6-6 ...)
- imagemagick <unfixed> (bug #872374)
+ [wheezy] - imagemagick <not-affected> (Vulnerable code not present)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/663
NOTE: https://github.com/ImageMagick/ImageMagick/commit/1cc6f0ccc92c20c7cab6c4a7335daf29c91f0d8e
CVE-2017-12875 (The WritePixelCachePixels function in ImageMagick 7.0.6-6 allows ...)
More information about the Secure-testing-commits
mailing list