[Git][security-tracker-team/security-tracker][master] Reserve DLA-1619-1 for graphicsmagick

[Hugo Lefeuvre]

Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9738e111 by Hugo Lefeuvre at 2018-12-27T13:28:46Z
Reserve DLA-1619-1 for graphicsmagick

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[27 Dec 2018] DLA-1619-1 graphicsmagick - security update
+	{CVE-2018-20184 CVE-2018-20185 CVE-2018-20189}
+	[jessie] - graphicsmagick 1.3.20-3+deb8u5
 [26 Dec 2018] DLA-1618-1 libsndfile - security update
 	{CVE-2017-8361 CVE-2017-8362 CVE-2017-8363 CVE-2017-8365 CVE-2017-14245 CVE-2017-14246 CVE-2017-14634 CVE-2017-17456 CVE-2017-17457 CVE-2018-13139 CVE-2018-19432 CVE-2018-19661 CVE-2018-19662}
 	[jessie] - libsndfile 1.0.25-9.1+deb8u2


=====================================
data/dla-needed.txt
=====================================
@@ -49,10 +49,6 @@ ghostscript (Lucas Kanashiro)
 --
 gnutls28
 --
-graphicsmagick (Hugo Lefeuvre)
-  NOTE: 20181226: CVE-2018-20184: looks like fix involves some refactoring. not sure it's worth it unless i can come with a trimmed down version of it
-  NOTE: CVE-2018-20185, CVE-2018-20189: fix trivial, easy to test, should be worth it.
---
 jasper (Markus Koschany)
 --
 libav (Markus Koschany, Mike Gabriel)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9738e111a5620a70c922922f2270835735b7778c

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9738e111a5620a70c922922f2270835735b7778c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181227/53820d2c/attachment-0001.html>