[Git][security-tracker-team/security-tracker][master] automatic update
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Mar 11 20:10:40 GMT 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
0dd21a72 by security tracker role at 2023-03-11T20:10:29+00:00
automatic update
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -1,3 +1,17 @@
+CVE-2023-1354 (A vulnerability has been found in SourceCodester Design and Implementa ...)
+ TODO: check
+CVE-2023-1353 (A vulnerability, which was classified as problematic, was found in Sou ...)
+ TODO: check
+CVE-2023-1352 (A vulnerability, which was classified as critical, has been found in S ...)
+ TODO: check
+CVE-2023-1351 (A vulnerability classified as critical has been found in SourceCodeste ...)
+ TODO: check
+CVE-2023-1350 (A vulnerability was found in liferea. It has been rated as critical. A ...)
+ TODO: check
+CVE-2023-1349 (A vulnerability, which was classified as problematic, has been found i ...)
+ TODO: check
+CVE-2016-15028
+ RESERVED
CVE-2023-28143
RESERVED
CVE-2023-28142
@@ -30852,14 +30866,14 @@ CVE-2022-44270
CVE-2022-44269
RESERVED
CVE-2022-44268 (ImageMagick 7.1.0-49 is vulnerable to Information Disclosure. When it ...)
- {DSA-5347-1}
+ {DSA-5347-1 DLA-3357-1}
- imagemagick 8:6.9.11.60+dfsg-1.6 (bug #1030767)
NOTE: https://github.com/ImageMagick/ImageMagick6/commit/d77c01e560e973177feed4915ffd7dd1a45fd763
NOTE: https://www.metabaseq.com/imagemagick-zero-days/
NOTE: https://github.com/ImageMagick/ImageMagick/discussions/6027
NOTE: https://github.com/duc-nt/CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
CVE-2022-44267 (ImageMagick 7.1.0-49 is vulnerable to Denial of Service. When it parse ...)
- {DSA-5347-1}
+ {DSA-5347-1 DLA-3357-1}
- imagemagick 8:6.9.11.60+dfsg-1.6 (bug #1030767)
NOTE: https://github.com/ImageMagick/ImageMagick6/commit/d77c01e560e973177feed4915ffd7dd1a45fd763
NOTE: https://www.metabaseq.com/imagemagick-zero-days/
@@ -131296,7 +131310,7 @@ CVE-2021-34560 (In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.9 a form contain
CVE-2021-34559 (In PEPPERL+FUCHS WirelessHART-Gateway <= 3.0.8 a vulnerability may ...)
NOT-FOR-US: PEPPERL+FUCHS WirelessHART-Gateway
CVE-2021-3596 (A NULL pointer dereference flaw was found in ImageMagick in versions p ...)
- {DLA-3007-1}
+ {DLA-3357-1 DLA-3007-1}
- imagemagick 8:6.9.11.57+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/2624
NOTE: https://github.com/ImageMagick/ImageMagick/commit/43dfb1894761c4929d5d5c98dc80ba4e59a0d114
@@ -133144,6 +133158,7 @@ CVE-2021-3575 (A heap-based buffer overflow was found in openjpeg in color.c:379
[stretch] - openjpeg2 <no-dsa> (Minor issue)
NOTE: https://github.com/uclouvain/openjpeg/issues/1347
CVE-2021-3574 (A vulnerability was found in ImageMagick-7.0.11-5, where executing a c ...)
+ {DLA-3357-1}
[experimental] - imagemagick 8:6.9.12.20+dfsg1-1
- imagemagick 8:6.9.11.60+dfsg-1.5 (bug #1027164)
[bullseye] - imagemagick <ignored> (Minor issue)
@@ -169141,6 +169156,7 @@ CVE-2021-20225 (A flaw was found in grub2 in versions prior to 2.06. The option
- grub2 2.04-16
[stretch] - grub2 <ignored> (No SecureBoot support in stretch)
CVE-2021-20224 (An integer overflow issue was discovered in ImageMagick's ExportIndexQ ...)
+ {DLA-3357-1}
- imagemagick 8:6.9.11.57+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/pull/3083
NOTE: https://github.com/ImageMagick/ImageMagick/commit/5af1dffa4b6ab984b5f13d1e91c95760d75f12a6
@@ -172708,7 +172724,7 @@ CVE-2020-29600 (In AWStats through 7.7, cgi-bin/awstats.pl?config= accepts an ab
NOTE: https://github.com/eldy/awstats/issues/90
NOTE: https://github.com/eldy/awstats/commit/d4d815d0caae3dbae83ac70a1ae4581bd57cf376
CVE-2020-29599 (ImageMagick before 6.9.11-40 and 7.x before 7.0.10-40 mishandles the - ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.57+dfsg-1 (bug #977205)
NOTE: https://github.com/ImageMagick/ImageMagick/discussions/2851
NOTE: https://insert-script.blogspot.com/2020/11/imagemagick-shell-injection-via-pdf.html
@@ -180469,110 +180485,110 @@ CVE-2020-27777 (A flaw was found in the way RTAS handled memory accesses in user
[stretch] - linux <ignored> (Only an issue when Secure Boot is implemented)
NOTE: https://git.kernel.org/linus/bd59380c5ba4147dcbaad3e582b55ccfd120b764
CVE-2020-27776 (A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1736
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/0c92913ec5705300943703f1795f34c0cc25164e
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/3e21bc8a58b4ae38d24c7e283837cc279f35b6a5
CVE-2020-27775 (A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker w ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1737
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/a2166bfb1049bac4c0f7b8b5d3ef86a1f48470b2
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/78d9987ae80a95865c9f139afde0dcf3fd832ddc
CVE-2020-27774 (A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1743
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/29cee9152d1b5487cfd19443ca48935eea0cabe2
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/052175e4b190598141fbcc64641cd5ee4db3602d
CVE-2020-27773 (A flaw was found in ImageMagick in MagickCore/gem-private.h. An attack ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1739
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/3d71aa8265ffaaf686021a6fbd54c037f71ee3a2
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/be6ffd9f283c2681d74469db8b000701665cf034
CVE-2020-27772 (A flaw was found in ImageMagick in coders/bmp.c. An attacker who submi ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1749
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/a1142af44f61c038ad3eccc099c5b9548b507846
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/7f819ef8855608d9cb1ded5e4f30cdfff1da7c11
CVE-2020-27771 (In RestoreMSCWarning() of /coders/pdf.c there are several areas where ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1753
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/872ffe6d0131beec8b47568a4874ffaca91a872e
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/9dd1c7e1f8f6c137bfd3293be2554f59456c7b62
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/a07ecde4c1c3a3efaa628434adc903295f6bb2b3
CVE-2020-27770 (Due to a missing check for 0 value of `replace_extent`, it is possible ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1721
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/be90a5395695f0d19479a5d46b06c678be7f7927
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/c01495f91ac71c5205f52713430b68e80d851149
CVE-2020-27769 (In ImageMagick versions before 7.0.9-0, there are outside the range of ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1740
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/7b058696133c6d36e0b48a454e357482db71982e
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/7661113a654c9c822c23a8fb8aa1b021fc7fbe9d
CVE-2020-27768 (In ImageMagick, there is an outside the range of representable values ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1751
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/95d4e94e0353e503b71a53f5e6fad173c7c70c90
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/8c6e86f81968fab1710317d87b00c608108e6a2a
CVE-2020-27767 (A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker w ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1741
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/564f2a35e523e2b6cce9485018157f03ec05a947
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/c2f66e7fc9189a652f77a021bd047c4146d634d1
CVE-2020-27766 (A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1734
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/29cee9152d1b5487cfd19443ca48935eea0cabe2
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/052175e4b190598141fbcc64641cd5ee4db3602d
NOTE: Same fix as CVE-2020-27774
CVE-2020-27765 (A flaw was found in ImageMagick in MagickCore/segment.c. An attacker w ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1730
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/a4c89f2a61069ad7637bc7749cc1a839de442526
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/4321934be544bc2888c6799fd6b50d8188a3d832
CVE-2020-27764 (In /MagickCore/statistic.c, there are several areas in ApplyEvaluateOp ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1735
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/3e21bc8a58b4ae38d24c7e283837cc279f35b6a5
CVE-2020-27763 (A flaw was found in ImageMagick in MagickCore/resize.c. An attacker wh ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1718
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/43539e67a47d2f8de832d33a5b26dc2a7a12294f
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/cc0944d57f846c839905d573503ab055b34090e4
CVE-2020-27762 (A flaw was found in ImageMagick in coders/hdr.c. An attacker who submi ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1713
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/7db3fa20893d557259da6e99e111954de83d2495
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/3e10f7c3c9f0394dfd6ebd372bc34a172dabc8ff
CVE-2020-27761 (WritePALMImage() in /coders/palm.c used size_t casts in several areas ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1726
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/db5e12e24f1378ce8c93a5c35991dcdd23a67bb0
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/14c90fb315eb3666a4cf6d784cbde74c69c934ec
CVE-2020-27760 (In `GammaImage()` of /MagickCore/enhance.c, depending on the `gamma` v ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1717
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/c5fcdea6a6ae27cf3db20c28b176e87b1a584e06
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/83cd04f580ccf4cc194813777c1fcfba78e602aa
CVE-2020-27759 (In IntensityCompare() of /MagickCore/quantize.c, a double value was be ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1720
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/d44f8a35558951a21367d306a42e5a097f3a43fe
@@ -180580,18 +180596,19 @@ CVE-2020-27759 (In IntensityCompare() of /MagickCore/quantize.c, a double value
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/2000dd1a7da8098483b8937b53ff3b6ff3048c97
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/8c5cbc85c397fff55b859b50c4bc2ab7a79571da
CVE-2020-27758 (A flaw was found in ImageMagick in coders/txt.c. An attacker who submi ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1719
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/f0a8d407b2801174fd8923941a9e7822f7f9a506
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/e5e15b4456c825f78554e2ef1cc6344fa1218448
CVE-2020-27757 (A floating point math calculation in ScaleAnyToQuantum() of /MagickCor ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1712
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/e88532bd4418e95b70cbc415fe911d22ab27a5fd
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/ded073520c133421f842160d3a9e207788f55a90
CVE-2020-27756 (In ParseMetaGeometry() of MagickCore/geometry.c, image height and widt ...)
+ {DLA-3357-1}
- imagemagick 8:6.9.11.24+dfsg-1
[stretch] - imagemagick <not-affected> (Vulnerable code introduced later)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1725
@@ -180604,7 +180621,7 @@ CVE-2020-27755 (in SetImageExtent() of /MagickCore/image.c, an incorrect image d
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/f28e9e56e1b56d4e1f09d2a56d70892ae295d6a4
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/f9191f9e388330c8e22661b42092cc78a29a5d6f
CVE-2020-27754 (In IntensityCompare() of /magick/quantize.c, there are calls to PixelP ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1754
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick6/commit/d5df600d43c8706df513a3273d09aee6f54a9233
@@ -180625,13 +180642,13 @@ CVE-2020-27752 (A flaw was found in ImageMagick in MagickCore/quantum-private.h.
NOTE: impossible to determine whether there was a possible security vulnerability
NOTE: in the first place.
CVE-2020-27751 (A flaw was found in ImageMagick in MagickCore/quantum-export.c. An att ...)
- {DLA-2672-1}
+ {DLA-3357-1 DLA-2672-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1727
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/f60d59cc3a7e3402d403361e0985ffa56f746a82
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/879bb6a13ece5508cd983bc3d64ced23900b60ee
CVE-2020-27750 (A flaw was found in ImageMagick in MagickCore/colorspace-private.h and ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1711
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/a81ca9a1b46a96be83682af3389f0a6f3d0d389d
@@ -181586,7 +181603,7 @@ CVE-2020-27562
CVE-2020-27561
RESERVED
CVE-2020-27560 (ImageMagick 7.0.10-34 allows Division by Zero in OptimizeLayerFrames i ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.57+dfsg-1 (bug #972797)
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/ef59bd764f88d893f1219fee8ba696a5d3f8c1c4
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/6e3b13c7ef94d72b40fba91987897c4326717a46
@@ -186090,19 +186107,19 @@ CVE-2020-25678 (A flaw was found in ceph in versions prior to 16.y.z where ceph
CVE-2020-25677 (A flaw was found in Ceph-ansible v4.0.41 where it creates an /etc/ceph ...)
NOT-FOR-US: ceph Ansible module
CVE-2020-25676 (In CatromWeights(), MeshInterpolate(), InterpolatePixelChannel(), Inte ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1732
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/406da3af9e09649cda152663c179902edf5ab3ac
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/94aeb3c40d25aee1051ba8eb3a31601558ef2506
CVE-2020-25675 (In the CropImage() and CropImageToTiles() routines of MagickCore/trans ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1731
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/64dc80b2e1907f7f20bf34d4df9483f938b0de71
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/6b169173585127299f4724f7880b575879c7f033
CVE-2020-25674 (WriteOnePNGImage() from coders/png.c (the PNG coder) has a for loop wi ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1715
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/67b871032183a29d3ca0553db6ce1ae80fddb9aa
@@ -186147,14 +186164,14 @@ CVE-2020-25667 (TIFFGetProfiles() in /coders/tiff.c calls strstr() which causes
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/986b5dff173413fa712db27eb677cdef15f0bab6
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/14ba3e46a66c4799d643c7b959792e185c6599c7
CVE-2020-25666 (There are 4 places in HistogramCompare() in MagickCore/histogram.c whe ...)
- {DLA-2602-1}
+ {DLA-3357-1 DLA-2602-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1750
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/94691f00839dbdf43edb1508af945ab19b388573
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/91ae12c57f3b9b23f2072462c27a8378b59f395e
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/245d884e1868ff9b932adad5fcacf9e3e1eb4c7f
CVE-2020-25665 (The PALM image coder at coders/palm.c makes an improper call to Acquir ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1714
NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/cfd829bd3581b092e0a267b3deba46fa90b9bc88
@@ -199407,7 +199424,7 @@ CVE-2020-19668 (Unverified indexs into the array lead to out of bound access in
NOTE: https://github.com/libsixel/libsixel/commit/05e5d21d065c663ec7a83d185974f4c252314968 (v1.9.0)
NOTE: Since 1.10.3-1 the Debian package moved from https://github.com/saitoha/libsixel to https://github.com/libsixel/libsixel fork
CVE-2020-19667 (Stack-based buffer overflow and unconditional jump in ReadXPMImage in ...)
- {DLA-2523-1}
+ {DLA-3357-1 DLA-2523-1}
- imagemagick 8:6.9.11.24+dfsg-1
NOTE: https://github.com/ImageMagick/ImageMagick/issues/1895
NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/26538669546730c5b2dc36e7d48850f1f6928f94
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0dd21a72089a73641caf731db58ed846706ac8e8
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/0dd21a72089a73641caf731db58ed846706ac8e8
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230311/0112f43c/attachment-0001.htm>
More information about the debian-security-tracker-commits
mailing list