[Git][security-tracker-team/security-tracker][master] new graphicsmagick issues

[Moritz Muehlenhoff (@jmm)]

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
605d590a by Moritz Muehlenhoff at 2025-03-07T09:55:20+01:00
new graphicsmagick issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -1,15 +1,15 @@
 CVE-2025-2067 (A vulnerability was found in projectworlds Life Insurance Management S ...)
-	NOT-FOR-US: rojectworlds Life Insurance Management System
+	NOT-FOR-US: projectworlds Life Insurance Management System
 CVE-2025-2066 (A vulnerability has been found in projectworlds Life Insurance Managem ...)
-	NOT-FOR-US: rojectworlds Life Insurance Management System
+	NOT-FOR-US: projectworlds Life Insurance Management System
 CVE-2025-2065 (A vulnerability, which was classified as critical, was found in projec ...)
-	NOT-FOR-US: rojectworlds Life Insurance Management System
+	NOT-FOR-US: projectworlds Life Insurance Management System
 CVE-2025-2064 (A vulnerability, which was classified as critical, has been found in p ...)
-	NOT-FOR-US: rojectworlds Life Insurance Management System
+	NOT-FOR-US: projectworlds Life Insurance Management System
 CVE-2025-2063 (A vulnerability classified as critical was found in projectworlds Life ...)
-	NOT-FOR-US: rojectworlds Life Insurance Management System
+	NOT-FOR-US: projectworlds Life Insurance Management System
 CVE-2025-2062 (A vulnerability classified as critical has been found in projectworlds ...)
-	NOT-FOR-US: rojectworlds Life Insurance Management System
+	NOT-FOR-US: projectworlds Life Insurance Management System
 CVE-2025-2061 (A vulnerability was found in code-projects Online Ticket Reservation S ...)
 	NOT-FOR-US: code-projects
 CVE-2025-2060 (A vulnerability was found in PHPGurukul Emergency Ambulance Hiring Por ...)
@@ -47,9 +47,11 @@ CVE-2025-2041 (A vulnerability, which was classified as critical, has been found
 CVE-2025-27816 (A vulnerability was discovered in the Arctera InfoScale 7.0 through 8. ...)
 	NOT-FOR-US: Arctera InfoScale
 CVE-2025-27796 (WPG in GraphicsMagick before 1.3.46 mishandles palette buffer allocati ...)
-	TODO: check
+	- graphicsmagick <unfixed>
+	NOTE: https://foss.heptapod.net/graphicsmagick/graphicsmagick/-/commit/883ebf8cae6dfa5873d975fe3476b1a188ef3f9f
 CVE-2025-27795 (JXL in GraphicsMagick before 1.3.46 lacks image dimension resource lim ...)
-	TODO: check
+	- graphicsmagick <unfixed>
+	NOTE: https://foss.heptapod.net/graphicsmagick/graphicsmagick/-/commit/9bbae7314e3c3b19b830591010ed90bb136b9c42
 CVE-2025-27598 (ImageSharp is a 2D graphics API. An Out-of-bounds Write vulnerability  ...)
 	NOT-FOR-US: ImageSharp
 CVE-2025-26708 (There is a configuration defect vulnerability in ZTELink 5.4.9 for iOS ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/605d590aa74f5eba8c1a1c0bd1d0740dd3307d28

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/605d590aa74f5eba8c1a1c0bd1d0740dd3307d28
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250307/63f3ff02/attachment-0001.htm>