[Git][security-tracker-team/security-tracker][master] Reserve DLA-3007-1 for imagemagick
Andreas Rönnquist (@gusnan)
gusnan at debian.org
Sat May 14 14:14:53 BST 2022
Andreas Rönnquist pushed to branch master at Debian Security Tracker / security-tracker
Commits:
b7e34d6e by Andreas Rönnquist at 2022-05-14T15:13:50+02:00
Reserve DLA-3007-1 for imagemagick
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -59997,7 +59997,6 @@ CVE-2021-34559 (In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.8 a vulnerabilit
CVE-2021-3596 (A NULL pointer dereference flaw was found in ImageMagick in versions p ...)
- imagemagick 8:6.9.11.57+dfsg-1
[buster] - imagemagick <ignored> (Minor issue)
- [stretch] - imagemagick <postponed> (Minor issue)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/2624
NOTE: https://github.com/ImageMagick/ImageMagick/commit/43dfb1894761c4929d5d5c98dc80ba4e59a0d114
NOTE: https://github.com/ImageMagick/ImageMagick6/commit/27f314e2e6eb44b661e65008ce1ce46b85a5628b
=====================================
data/DLA/list
=====================================
@@ -1,3 +1,6 @@
+[14 May 2022] DLA-3007-1 imagemagick - security update
+ {CVE-2021-3596 CVE-2022-28463}
+ [stretch] - imagemagick 8:6.9.7.4+dfsg-11+deb9u13
[14 May 2022] DLA-3006-1 openjdk-8 - security update
{CVE-2022-21426 CVE-2022-21434 CVE-2022-21443 CVE-2022-21476 CVE-2022-21496}
[stretch] - openjdk-8 8u332-ga-1~deb9u1
=====================================
data/dla-needed.txt
=====================================
@@ -83,9 +83,6 @@ gpac (Roberto C. Sánchez)
icingaweb2 (Abhijith PA)
NOTE: https://people.debian.org/~abhijith/upload/mruby/icingaweb2_2.4.1-1+deb9u2.dsc (abhijith)
--
-imagemagick (Andreas Rönnquist)
- NOTE: 20220512: Programming language C. Consider fixing postponed issues. (apo)
---
intel-microcode (Stefano Rivera)
NOTE: 20220213: please recheck
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7e34d6e925ba904a6a9b601322672442c639440
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/b7e34d6e925ba904a6a9b601322672442c639440
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220514/e5cbc6c6/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list