[Git][security-tracker-team/security-tracker][master] CVE-2019-1147{3,4}/graphicsmagick: add third fix

[Hugo Lefeuvre]

Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker


Commits:
dcbd7051 by Hugo Lefeuvre at 2019-05-19T07:48:49Z
CVE-2019-1147{3,4}/graphicsmagick: add third fix

Last fix for CVE-2019-11473/CVE-2019-11474. Addresses a few issues in
previous patches and fixes additional oob reads.

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1583,10 +1583,12 @@ CVE-2019-11474 (coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause
 	[jessie] - graphicsmagick <no-dsa> (Minor issue)
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/5402c5cbd8bd
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/944dcbc457f8
+	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/53d4a99c6dad
 CVE-2019-11473 (coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a deni ...)
 	- graphicsmagick 1.4~hg15976-1
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/5402c5cbd8bd
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/944dcbc457f8
+	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/53d4a99c6dad
 CVE-2019-11472 (ReadXWDImage in coders/xwd.c in the XWD image parsing component of Ima ...)
 	- imagemagick <unfixed> (low; bug #927828)
 	[buster] - imagemagick <ignored> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dcbd7051d4f0b2a6450483e81d486d65ef2fce5b

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/dcbd7051d4f0b2a6450483e81d486d65ef2fce5b
You're receiving this email because of your account on salsa.debian.org.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190519/29938e9e/attachment-0001.html>