[Git][security-tracker-team/security-tracker][master] Reserve DLA-1574-1 for imagemagick

Sun Nov 11 21:08:54 GMT 2018

Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker


Commits:
117350b0 by Thorsten Alteholz at 2018-11-11T21:02:58Z
Reserve DLA-1574-1 for imagemagick

- - - - -


2 changed files:

- data/DLA/list
- data/dla-needed.txt


Changes:

=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[11 Nov 2018] DLA-1574-1 imagemagick - security update
+	{CVE-2018-18025}
+	[jessie] - imagemagick 8:6.8.9.9-5+deb8u15
 [10 Nov 2018] DLA-1573-1 firmware-nonfree - security update
 	{CVE-2016-0801 CVE-2017-0561 CVE-2017-9417 CVE-2017-13077 CVE-2017-13078 CVE-2017-13079 CVE-2017-13080 CVE-2017-13081}
 	[jessie] - firmware-nonfree 20161130-4~deb8u1


=====================================
data/dla-needed.txt
=====================================
@@ -23,11 +23,6 @@ icecast2 (Abhijith PA)
 --
 icu (Roberto C. Sánchez)
 --
-imagemagick (Thorsten Alteholz)
-  NOTE: 20181023: add additional Ubuntu patch to disable ghostscript handled formats
-  NOTE: 20181023: wait with upload until this is done in unstable -> #907336
-  NOTE: 20181110: bug still open so upload without ubuntu patch
---
 jasper (apo)
   NOTE: 20181104: consider fixing no-dsa issues too because the package is used
   NOTE: by almost 50 % of sponsors. (apo)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/117350b05525f52c24a02939198ffa5736163937

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/117350b05525f52c24a02939198ffa5736163937
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181111/09f7913b/attachment.html>
