[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2017-18209/imagemagick

Salvatore Bonaccorso carnil at debian.org
Thu Mar 1 21:54:17 UTC 2018


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
86bf9884 by Salvatore Bonaccorso at 2018-03-01T22:53:26+01:00
Add CVE-2017-18209/imagemagick

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -28,7 +28,10 @@ CVE-2017-18210 (In ImageMagick 7.0.7, a NULL pointer dereference vulnerability w
 	NOTE: The commit referenced the wrong issue in the upstream issue tracker, but
 	NOTE: as noted in https://github.com/ImageMagick/ImageMagick/issues/791#issuecomment-334050314
 CVE-2017-18209 (In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ...)
-	TODO: check
+	- imagemagick 8:6.9.9.34+dfsg-3
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/790
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/6ac2858a87df6d645813e43928b4f01a3169ad3f
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/cca91aa1861818342e3d072bb0fad7dc4ffac24a
 CVE-2018-7579 (\application\admin\controller\update_urls.class.php in YzmCMS 3.6 has ...)
 	TODO: check
 CVE-2018-7578



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/86bf9884f196bf900987161ae1c9365319037ed8

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/86bf9884f196bf900987161ae1c9365319037ed8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180301/2661263c/attachment.html>


More information about the Secure-testing-commits mailing list