[Git][security-tracker-team/security-tracker][master] remove some no-dsa for graphicsmagick
Moritz Muehlenhoff
jmm at debian.org
Tue Oct 16 18:36:04 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3bd2ded1 by Moritz Muehlenhoff at 2018-10-16T17:35:18Z
remove some no-dsa for graphicsmagick
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -40136,7 +40136,6 @@ CVE-2017-17790 (The lazy_initialize function in lib/resolv.rb in Ruby through 2.
NOTE: Fixed by: https://github.com/ruby/ruby/commit/e7464561b5151501beb356fc750d5dd1a88014f7
CVE-2017-17783 (In GraphicsMagick 1.3.27a, there is a buffer over-read in ReadPALMImage ...)
- graphicsmagick 1.3.27-2 (bug #884904)
- [stretch] - graphicsmagick <no-dsa> (Minor issue, built with QuantumDepth=16)
[jessie] - graphicsmagick <no-dsa> (Minor issue)
[wheezy] - graphicsmagick <not-affected> (vulnerable code not present, unreproducible with ASAN)
NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=60932931559a
@@ -69399,7 +69398,6 @@ CVE-2017-10801 (phpSocial (formerly phpDolphin) before 3.0.1 has XSS in the PATH
NOT-FOR-US: phpSocial
CVE-2017-10800 (When GraphicsMagick 1.3.25 processes a MATLAB image in coders/mat.c, it ...)
- graphicsmagick 1.3.26-1 (bug #867060)
- [stretch] - graphicsmagick <no-dsa> (Minor issue)
[jessie] - graphicsmagick <no-dsa> (Minor issue)
[wheezy] - graphicsmagick <no-dsa> (Minor issue)
NOTE: http://hg.code.sf.net/p/graphicsmagick/code/rev/e5761e3a2012
@@ -69410,7 +69408,6 @@ CVE-2017-10800 (When GraphicsMagick 1.3.25 processes a MATLAB image in coders/ma
CVE-2017-10799 (When GraphicsMagick 1.3.25 processes a DPX image (with metadata ...)
{DLA-1045-1}
- graphicsmagick 1.3.26-1 (bug #867077)
- [stretch] - graphicsmagick <no-dsa> (Minor issue)
[jessie] - graphicsmagick <no-dsa> (Minor issue)
NOTE: http://hg.code.sf.net/p/graphicsmagick/code/rev/f10b9bb3ca62
CVE-2017-10798 (In ObjectPlanet Opinio before 7.6.4, there is XSS. ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3bd2ded1f7a6e0840571b769dbd87673cfcd8258
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3bd2ded1f7a6e0840571b769dbd87673cfcd8258
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181016/064d961b/attachment.html>
More information about the debian-security-tracker-commits
mailing list