[Git][security-tracker-team/security-tracker][master] Update information for CVE-2020-27776

Sat Dec 5 10:42:32 GMT 2020


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
71034257 by Salvatore Bonaccorso at 2020-12-05T11:42:06+01:00
Update information for CVE-2020-27776

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -6961,8 +6961,13 @@ CVE-2020-27777
 	[stretch] - linux <ignored> (Only an issue when Secure Boot is implemented)
 	NOTE: https://git.kernel.org/linus/bd59380c5ba4147dcbaad3e582b55ccfd120b764
 CVE-2020-27776 (A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker ...)
-	- imagemagick <undetermined>
+	- imagemagick 8:6.9.11.24+dfsg-1
+	[buster] - imagemagick <ignored> (Minor issue)
+	[stretch] - imagemagick <ignored> (Minor issue, UBSAN shift exponent warning)
 	NOTE: https://github.com/ImageMagick/ImageMagick/issues/1736
+	NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/29cee9152d1b5487cfd19443ca48935eea0cabe2
+	NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/052175e4b190598141fbcc64641cd5ee4db3602d
+	NOTE: Same fix as for CVE-2020-27774.
 CVE-2020-27775 (A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker w ...)
 	- imagemagick 8:6.9.11.24+dfsg-1
 	[buster] - imagemagick <ignored> (Minor issue)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7103425708eb1f199b32ef69d5b43ce68b264916

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/7103425708eb1f199b32ef69d5b43ce68b264916
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20201205/49859460/attachment.html>
