[Git][security-tracker-team/security-tracker][master] 2 commits: Add commit reference for CVE-2018-16643
Salvatore Bonaccorso
carnil at debian.org
Fri Sep 7 10:14:06 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
3eedcf9a by Salvatore Bonaccorso at 2018-09-07T09:11:02Z
Add commit reference for CVE-2018-16643
- - - - -
c9dade9d by Salvatore Bonaccorso at 2018-09-07T09:13:15Z
Add CVE-2018-16642/imagemagick
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -36,9 +36,13 @@ CVE-2018-16644 (There is a missing check for length in the functions ReadDCMImag
CVE-2018-16643 (The functions ReadDCMImage in coders/dcm.c, ReadPWPImage in ...)
- imagemagick 8:6.9.10.8+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/commit/6b6bff054d569a77973f2140c0e86366e6168a6c
+ NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/11d9dac3d991c62289d1ef7a097670166480e76c
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1199
CVE-2018-16642 (The function InsertRow in coders/cut.c in ImageMagick 7.0.7-37 allows ...)
- TODO: check
+ - imagemagick 8:6.9.10.2+dfsg-2
+ NOTE: https://github.com/ImageMagick/ImageMagick/commit/cc4ac341f29fa368da6ef01c207deaf8c61f6a2e
+ NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/97bb5dc5aad1584557057d5062601aa151bf9a13
+ NOTE: https://github.com/ImageMagick/ImageMagick/issues/1162
CVE-2018-16641 (ImageMagick 7.0.8-6 has a memory leak vulnerability in the ...)
TODO: check
CVE-2018-16640 (ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/e865ad84c9d43ea15f0da6c8deaf51a884e4e046...c9dade9d195765829e68ab70c4318fe249d51210
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/e865ad84c9d43ea15f0da6c8deaf51a884e4e046...c9dade9d195765829e68ab70c4318fe249d51210
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180907/84f19398/attachment.html>
More information about the debian-security-tracker-commits
mailing list