Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f11a9444 by Salvatore Bonaccorso at 2018-07-14T23:43:11+02:00
Update information for CVE-2017-14528/imagemagick
Follow maintainer triage on the issue further. Additionally mark the
issue as no-dsa for stretch. Revert thus to previous set fixed version.
Conclusions after discussion with Moritz Muehlenhoff (jmm).
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -46447,7 +46447,9 @@ CVE-2017-14529 (The pe_print_idata function in
peXXigen.c in the Binary File Des
NOTE:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=4d465c689a8fb27212ef358d0aee89d60dee69a6
NOTE:
https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=dcaaca89e8618eba35193c27afcb1cfa54f74582
CVE-2017-14528 (The TIFFSetProfiles function in coders/tiff.c in ImageMagick
7.0.6 has ...)
- - imagemagick <unfixed> (bug #878544)
+ [experimental] - imagemagick 8:6.9.10.2+dfsg-1
+ - imagemagick 8:6.9.10.2+dfsg-2 (bug #878544)
+ [stretch] - imagemagick <no-dsa> (Minor issue)
[jessie] - imagemagick <not-affected> (Vulnerable code not present)
[wheezy] - imagemagick <not-affected> (Can't reproduce crash with file)
NOTE: http://bugzilla.maptools.org/show_bug.cgi?id=2730
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f11a94447ebda7762fb695af96d4e2b4f3edf132
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f11a94447ebda7762fb695af96d4e2b4f3edf132
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
