[Git][security-tracker-team/security-tracker][master] Add CVE-2019-12974/imagemagick

Salvatore Bonaccorso carnil at debian.org
Thu Jun 27 21:34:02 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9f003071 by Salvatore Bonaccorso at 2019-06-27T20:33:30Z
Add CVE-2019-12974/imagemagick

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -47,7 +47,9 @@ CVE-2019-12975 (ImageMagick 7.0.8-34 has a memory leak vulnerability in the Writ
 	- imagemagick <unfixed> (unimportant; bug #931193)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/1517
 CVE-2019-12974 (A NULL pointer dereference in the function ReadPANGOImage in coders/pa ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/1515
+	NOTE: https://github.com/ImageMagick/ImageMagick6/commit/b4391bdd60df0a77e97a6ef1674f2ffef0e19e24
 CVE-2019-12973 (In OpenJPEG 2.3.1, there is excessive iteration in the opj_t1_encode_c ...)
 	TODO: check
 CVE-2019-12972 (An issue was discovered in the Binary File Descriptor (BFD) library (a ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9f00307151945079342a65f13d094cf459bcac1a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/9f00307151945079342a65f13d094cf459bcac1a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190627/996d9321/attachment.html>


More information about the debian-security-tracker-commits mailing list