[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] 3 commits: CVE-2017-17499, imagemagick: Wheezy is not affected.

Mon Jan 1 17:47:43 UTC 2018

Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
bf403945 by Markus Koschany at 2018-01-01T18:37:12+01:00
CVE-2017-17499,imagemagick: Wheezy is not affected.

Vulnerable function not present.

- - - - -
41dab063 by Markus Koschany at 2018-01-01T18:41:19+01:00
CVE-2017-17681,imagemagick: Wheezy is not affected.

Vulnerable code not present, unreproducible.

- - - - -
b15f9215 by Markus Koschany at 2018-01-01T18:46:54+01:00
Merge branch 'master' of https://salsa.debian.org/security-tracker-team/security-tracker

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================

--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5889,6 +5889,7 @@ CVE-2017-17681 (In ImageMagick 7.0.7-12 Q16, an infinite loop vulnerability was 
 	- imagemagick <unfixed> (low; bug #885941)
 	[stretch] - imagemagick <ignored> (Minor issue)
 	[jessie] - imagemagick <ignored> (Minor issue)
+	[wheezy] - imagemagick <not-affected> (vulnerable code not present, unreproducible)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/869
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/f6ca1441a5260165dabc627d26f60c32af1d5678
 	NOTE: different fix: https://github.com/ImageMagick/ImageMagick/commit/73d59a74e0b0a864c1a9581b8a4bdbee427125e2
@@ -6446,6 +6447,7 @@ CVE-2017-17500 (ReadRGBImage in coders/rgb.c in GraphicsMagick 1.3.26 has a ...)
 CVE-2017-17499 (ImageMagick before 6.9.9-24 and 7.x before 7.0.7-12 has a ...)
 	{DSA-4074-1}
 	- imagemagick <unfixed> (bug #885339)
+	[wheezy] - imagemagick <not-affected> (vulnerable code not present)
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/8c35502217c1879cb8257c617007282eee3fe1cc
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/dd96d671e4d5ae22c6894c302e8996c13f24c45a
 	NOTE: https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=33078&sid=5fbb164c3830293138917f9b14264ed1



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/50bc4c891d146f4f21d699204e0430ddba0b2b2d...b15f9215c7abb1a64aa5b9164d2efaee0cf91881

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/50bc4c891d146f4f21d699204e0430ddba0b2b2d...b15f9215c7abb1a64aa5b9164d2efaee0cf91881
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180101/31588f6b/attachment.html>
