[Pkg-gmagick-im-team] Bug#864151: Bug#864151: imagemagick: Typo in debian/changelog for CVE identifier
roucaries bastien
roucaries.bastien+debian at gmail.com
Sun Jun 4 13:36:11 UTC 2017
On Sun, Jun 4, 2017 at 3:06 PM, Salvatore Bonaccorso <carnil at debian.org> wrote:
> Source: imagemagick
> Version: 8:6.9.7.4+dfsg-11
> Severity: minor
>
> Hi
>
> There is a small typo in one of the CVE identifiers for the
> 8:6.9.7.4+dfsg-11:
>
> * Fix minor security bugs:
> + CVE-2017-9409: Memory leak in the icon file coder.
> (Closes: #864087)
>
> which should be CVE-2017-9405.
>
> To avoid confusions for readers of debian/changelog, can you fix that
> in any furture upload retrospecitively?
They are also:
On Sat, May 27, 2017 at 04:06:53PM +0000, Bastien Roucaričs wrote:
> + A crafted file revealed an assertion failure in profile.c.
> (Closes: #863124). Fix CVE-2017-9142.
Think that one was a typo right? Should be CVE-2017-9141. But I have
correctly tracked the fix in the security-tracker, so frime from that
POV.
Regards and thanks a lot for your amazing work,
Salvatore
Will do thanks for the bug
>
> Regards,
> Salvatore
>
> _______________________________________________
> Pkg-gmagick-im-team mailing list
> Pkg-gmagick-im-team at lists.alioth.debian.org
> http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/pkg-gmagick-im-team
More information about the Pkg-gmagick-im-team
mailing list