[Git][security-tracker-team/security-tracker][master] Annotate CVE-2017-11139 as not affecting graphicsmagick in jessie
Roberto C. Sánchez
roberto at debian.org
Sat Jun 30 23:27:07 BST 2018
Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker
Commits:
648f81db by Roberto C. Sánchez at 2018-06-30T18:26:38-04:00
Annotate CVE-2017-11139 as not affecting graphicsmagick in jessie
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -54264,6 +54264,7 @@ CVE-2017-11140 (The ReadJPEGImage function in coders/jpeg.c in GraphicsMagick 1.
NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/b4139088b49a
CVE-2017-11139 (GraphicsMagick 1.3.26 has double free vulnerabilities in the ...)
- graphicsmagick 1.3.26-2 (low)
+ [jessie] - graphicsmagick <not-affected> (vulnerable code for CVE-2017-11102 not applied in Jessie)
[wheezy] - graphicsmagick <not-affected> (vulnerable code for CVE-2017-11102 not applied in Wheezy)
NOTE: Fixed by: http://hg.code.sf.net/p/graphicsmagick/code/rev/4d0baa77245b
CVE-2017-11138
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/648f81db4f3e421fc0a564c8690884560e6dc7d5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/648f81db4f3e421fc0a564c8690884560e6dc7d5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180630/19922784/attachment.html>
More information about the debian-security-tracker-commits
mailing list