[Git][security-tracker-team/security-tracker][master] Add CVE-2019-13311/imagemagick

Fri Jul 5 10:37:29 BST 2019


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
756848af by Salvatore Bonaccorso at 2019-07-05T09:37:01Z
Add CVE-2019-13311/imagemagick

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2,7 +2,9 @@ CVE-2019-13312 (block_cmp() in libavcodec/zmbvenc.c in FFmpeg 4.1.3 has a heap-b
 	- ffmpeg <unfixed>
 	NOTE: https://trac.ffmpeg.org/ticket/7980
 CVE-2019-13311 (ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory becau ...)
-	TODO: check
+	- imagemagick <unfixed> (unimportant)
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/1623
+	NOTE: https://github.com/ImageMagick/ImageMagick6/commit/bb812022d0bc12107db215c981cab0b1ccd73d91
 CVE-2019-13310 (ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory becau ...)
 	TODO: check
 CVE-2019-13309 (ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory becau ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/756848af181a2711790c13ea23fca705fd3ba15f

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/756848af181a2711790c13ea23fca705fd3ba15f
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190705/0a5283c5/attachment.html>
