Roberto C. Sánchez pushed to branch master at Debian Security Tracker / security-tracker
Commits: 1910058c by Roberto C. Sánchez at 2018-07-23T23:04:43-04:00 Remove annotation of CVE-2017-6335 as not affecting graphicsmagick in jessie; the vulnerable code is in fact present - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== --- a/data/CVE/list +++ b/data/CVE/list @@ -73195,7 +73195,6 @@ CVE-2017-6315 (Astaro Security Gateway (aka ASG) 7 allows remote attackers to ex NOT-FOR-US: Astaro CVE-2017-6335 (The QuantumTransferMode function in coders/tiff.c in GraphicsMagick ...) - graphicsmagick 1.3.25-8 - [jessie] - graphicsmagick <not-affected> (vulnerable code not present) [wheezy] - graphicsmagick <not-affected> (vulnerable code not present) NOTE: Fixed by: https://sourceforge.net/p/graphicsmagick/code/ci/6156b4c2992d855ece6079653b3b93c3229fc4b8/ CVE-2017-6317 (Memory leak in the add_shader_program function in vrend_renderer.c in ...) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1910058c203caf1583f6468bc36fb9310da61836 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1910058c203caf1583f6468bc36fb9310da61836 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits