[Git][security-tracker-team/security-tracker][master] remove some no-dsa for graphicsmagick

Tue, 16 Oct 2018 10:36:26 -0700 

Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
3bd2ded1 by Moritz Muehlenhoff at 2018-10-16T17:35:18Z
remove some no-dsa for graphicsmagick

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -40136,7 +40136,6 @@ CVE-2017-17790 (The lazy_initialize function in 
lib/resolv.rb in Ruby through 2.
        NOTE: Fixed by: 
https://github.com/ruby/ruby/commit/e7464561b5151501beb356fc750d5dd1a88014f7
 CVE-2017-17783 (In GraphicsMagick 1.3.27a, there is a buffer over-read in 
ReadPALMImage ...)
        - graphicsmagick 1.3.27-2 (bug #884904)
-       [stretch] - graphicsmagick <no-dsa> (Minor issue, built with 
QuantumDepth=16)
        [jessie] - graphicsmagick <no-dsa> (Minor issue)
        [wheezy] - graphicsmagick <not-affected> (vulnerable code not present, 
unreproducible with ASAN)
        NOTE: 
http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset;node=60932931559a
@@ -69399,7 +69398,6 @@ CVE-2017-10801 (phpSocial (formerly phpDolphin) before 
3.0.1 has XSS in the PATH
        NOT-FOR-US: phpSocial
 CVE-2017-10800 (When GraphicsMagick 1.3.25 processes a MATLAB image in 
coders/mat.c, it ...)
        - graphicsmagick 1.3.26-1 (bug #867060)
-       [stretch] - graphicsmagick <no-dsa> (Minor issue)
        [jessie] - graphicsmagick <no-dsa> (Minor issue)
        [wheezy] - graphicsmagick <no-dsa> (Minor issue)
        NOTE: http://hg.code.sf.net/p/graphicsmagick/code/rev/e5761e3a2012
@@ -69410,7 +69408,6 @@ CVE-2017-10800 (When GraphicsMagick 1.3.25 processes a 
MATLAB image in coders/ma
 CVE-2017-10799 (When GraphicsMagick 1.3.25 processes a DPX image (with 
metadata ...)
        {DLA-1045-1}
        - graphicsmagick 1.3.26-1 (bug #867077)
-       [stretch] - graphicsmagick <no-dsa> (Minor issue)
        [jessie] - graphicsmagick <no-dsa> (Minor issue)
        NOTE: http://hg.code.sf.net/p/graphicsmagick/code/rev/f10b9bb3ca62
 CVE-2017-10798 (In ObjectPlanet Opinio before 7.6.4, there is XSS. ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3bd2ded1f7a6e0840571b769dbd87673cfcd8258

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/3bd2ded1f7a6e0840571b769dbd87673cfcd8258
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to