[Git][security-tracker-team/security-tracker][master] Update information for CVE-2017-14528/imagemagick

Salvatore Bonaccorso carnil at debian.org
Sat Jul 14 22:43:36 BST 2018 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
f11a9444 by Salvatore Bonaccorso at 2018-07-14T23:43:11+02:00
Update information for CVE-2017-14528/imagemagick

Follow maintainer triage on the issue further. Additionally mark the
issue as no-dsa for stretch. Revert thus to previous set fixed version.

Conclusions after discussion with Moritz Muehlenhoff (jmm).

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -46447,7 +46447,9 @@ CVE-2017-14529 (The pe_print_idata function in peXXigen.c in the Binary File Des
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=4d465c689a8fb27212ef358d0aee89d60dee69a6
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=dcaaca89e8618eba35193c27afcb1cfa54f74582
 CVE-2017-14528 (The TIFFSetProfiles function in coders/tiff.c in ImageMagick 7.0.6 has ...)
-	- imagemagick <unfixed> (bug #878544)
+	[experimental] - imagemagick 8:6.9.10.2+dfsg-1
+	- imagemagick 8:6.9.10.2+dfsg-2 (bug #878544)
+	[stretch] - imagemagick <no-dsa> (Minor issue)
 	[jessie] - imagemagick <not-affected> (Vulnerable code not present)
 	[wheezy] - imagemagick <not-affected> (Can't reproduce crash with file)
 	NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2730



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f11a94447ebda7762fb695af96d4e2b4f3edf132

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/f11a94447ebda7762fb695af96d4e2b4f3edf132
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180714/5e23207f/attachment.html>

More information about the debian-security-tracker-commits mailing list