[Git][security-tracker-team/security-tracker][master] Track fixed version for imagemagick issues via unstable
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Thu Feb 16 21:48:51 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
a03f311d by Salvatore Bonaccorso at 2023-02-16T22:47:42+01:00
Track fixed version for imagemagick issues via unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -24683,14 +24683,14 @@ CVE-2022-44269
RESERVED
CVE-2022-44268 (ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it ...)
{DSA-5347-1}
- - imagemagick <unfixed> (bug #1030767)
+ - imagemagick 8:6.9.11.60+dfsg-1.6 (bug #1030767)
NOTE: https://github.com/ImageMagick/ImageMagick6/commit/d77c01e560e973177feed4915ffd7dd1a45fd763
NOTE: https://www.metabaseq.com/imagemagick-zero-days/
NOTE: https://github.com/ImageMagick/ImageMagick/discussions/6027
NOTE: https://github.com/duc-nt/CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
CVE-2022-44267 (ImageMagick 7.1.0-49 is vulnerable to Denial of Service. When it parse ...)
{DSA-5347-1}
- - imagemagick <unfixed> (bug #1030767)
+ - imagemagick 8:6.9.11.60+dfsg-1.6 (bug #1030767)
NOTE: https://github.com/ImageMagick/ImageMagick6/commit/d77c01e560e973177feed4915ffd7dd1a45fd763
NOTE: https://www.metabaseq.com/imagemagick-zero-days/
NOTE: https://github.com/ImageMagick/ImageMagick/discussions/6027
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a03f311dd4ec67ecab09954cbbc3bcf31842c045
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/a03f311dd4ec67ecab09954cbbc3bcf31842c045
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230216/ffb715e9/attachment.htm>
More information about the debian-security-tracker-commits
mailing list