[Git][security-tracker-team/security-tracker][master] Update status for CVE-2021-3610/imagemagick

Salvatore Bonaccorso (@carnil) carnil at debian.org
Sun Jun 4 13:51:23 BST 2023 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9f79d402 by Salvatore Bonaccorso at 2023-06-04T14:50:44+02:00
Update status for CVE-2021-3610/imagemagick

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -144038,6 +144038,7 @@ CVE-2021-3611 (A stack overflow vulnerability was found in the Intel HD Audio de
 	NOTE: Proposed fix: https://lore.kernel.org/qemu-devel/20211218160912.1591633-1-philmd@redhat.com/
 	NOTE: Fixed by: https://gitlab.com/qemu-project/qemu/-/commit/79fa99831debc9782087e834382c577215f2f511 (v7.0.0-rc1)
 CVE-2021-3610 (A heap-based buffer overflow vulnerability was found in ImageMagick in ...)
+	[experimental] - imagemagick 8:6.9.12.20+dfsg1-1
 	- imagemagick <unfixed>
 	[bookworm] - imagemagick <no-dsa> (Minor issue)
 	[bullseye] - imagemagick <no-dsa> (Minor issue)
@@ -144046,8 +144047,8 @@ CVE-2021-3610 (A heap-based buffer overflow vulnerability was found in ImageMagi
 	NOTE: ImageMagick6 prerequisite for <= 6.9.10-92: https://github.com/ImageMagick/ImageMagick6/commit/2d96228eec9fbea62ddb6c1450fa8d43e2c6b68a
 	NOTE: ImageMagick6 prerequisite for <= 6.9.11-10: https://github.com/ImageMagick/ImageMagick6/commit/7374894385161859ffbb84e280fcc89e7ae257e4
 	NOTE: ImageMagick6 prerequisite for <= 6.9.11-54: https://github.com/ImageMagick/ImageMagick6/commit/cdb67005376bcc8cbb0b743fb22787794cd30ebc
-	NOTE: ImageMagick6 [1/2]: https://github.com/ImageMagick/ImageMagick6/commit/b307bcadcdf6ea6819951ac1786b7904f27b25c6
-	NOTE: ImageMagick6 [2/2]: https://github.com/ImageMagick/ImageMagick6/commit/c75ae771a00c38b757c5ef4b424b51e761b02552
+	NOTE: ImageMagick6 [1/2]: https://github.com/ImageMagick/ImageMagick6/commit/b307bcadcdf6ea6819951ac1786b7904f27b25c6 (6.9.12-14)
+	NOTE: ImageMagick6 [2/2]: https://github.com/ImageMagick/ImageMagick6/commit/c75ae771a00c38b757c5ef4b424b51e761b02552 (6.9.12-14)
 	NOTE: Introduced by (Support 32-bit tiles TIFF images): https://github.com/ImageMagick/ImageMagick6/commit/b874d50070557eb98bdc6a3095ef4769af583dd2 (6.9.10-88)
 CVE-2021-35053 (Possible system denial of service in case of arbitrary changing Firefo ...)
 	NOT-FOR-US: Kaspersky



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f79d402bfe066dc7f22db22e8973f994582056a

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f79d402bfe066dc7f22db22e8973f994582056a
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230604/0e29800c/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list