[Git][security-tracker-team/security-tracker][master] CVE-2021-40211/imagemagick is already fixed in bullseye
Adrian Bunk (@bunk)
bunk at debian.org
Fri Apr 25 11:46:08 BST 2025
Adrian Bunk pushed to branch master at Debian Security Tracker / security-tracker
Commits:
ab6a3c2e by Adrian Bunk at 2025-04-25T13:45:35+03:00
CVE-2021-40211/imagemagick is already fixed in bullseye
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -304728,12 +304728,12 @@ CVE-2021-40212 (An exploitable out-of-bounds write vulnerability in PotPlayer 1.
NOT-FOR-US: PotPlayer
CVE-2021-40211 (An issue was discovered with ImageMagick 7.1.0-4 via Division by zero ...)
- imagemagick 8:6.9.11.60+dfsg-1.5
- [bullseye] - imagemagick <no-dsa> (Minor issue)
+ [bullseye] - imagemagick 8:6.9.11.60+dfsg-1.3+deb11u2
[buster] - imagemagick 8:6.9.10.23+dfsg-2.1+deb10u5
NOTE: https://github.com/ImageMagick/ImageMagick/issues/4097
NOTE: https://github.com/ImageMagick/ImageMagick/commit/0fb77f2a231038efdc38dcceddae6952ebdfb000 (7.1.0-5)
NOTE: https://github.com/ImageMagick/ImageMagick6/commit/450949ed017f009b399c937cf362f0058eacc5fa#diff-9509dd2616f8c0aab419100d616e5e926099cc61bdfde60f2ae408f02f43472a (6.9.12-43)
- NOTE: Included in fix for CVE-2022-32545 in 8:6.9.11.60+dfsg-1.5
+ NOTE: Included in fix for CVE-2022-32545 in 8:6.9.11.60+dfsg-1.5 and 8:6.9.11.60+dfsg-1.3+deb11u2
CVE-2021-40210
RESERVED
CVE-2021-40209
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab6a3c2ee65b131e0745be3aeaa73f29cb24b0a7
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/ab6a3c2ee65b131e0745be3aeaa73f29cb24b0a7
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250425/84d869bd/attachment.htm>
More information about the debian-security-tracker-commits
mailing list