[Git][security-tracker-team/security-tracker][master] CVE-2019-17540/imagemagick: add Debian bug report
Hugo Lefeuvre
hle at debian.org
Fri Oct 18 13:36:48 BST 2019
Hugo Lefeuvre pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4013a8ee by Hugo Lefeuvre at 2019-10-18T12:34:29Z
CVE-2019-17540/imagemagick: add Debian bug report
see Debian bug report for more information, waiting for confirmation
from upstream before updating undetermined status
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -2467,7 +2467,7 @@ CVE-2019-17541 (ImageMagick before 7.0.8-55 has a use-after-free in DestroyStrin
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/c1a5aa3f4214ad6e4748de84dad44398959014e1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1641
CVE-2019-17540 (ImageMagick before 7.0.8-54 has a heap-based buffer overflow in ReadPS ...)
- - imagemagick <undetermined>
+ - imagemagick <undetermined> (bug #942578)
NOTE: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=15826
TODO: check, unclear upstream issue and needed fixing commit
CVE-2019-17539 (In FFmpeg before 4.2, avcodec_open2 in libavcodec/utils.c allows a NUL ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4013a8ee9b5bc17e09a545e1d6c07cacd152b751
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4013a8ee9b5bc17e09a545e1d6c07cacd152b751
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191018/16a77387/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list