Roberto C. Sánchez pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1910058c by Roberto C. Sánchez at 2018-07-23T23:04:43-04:00
Remove annotation of CVE-2017-6335 as not affecting graphicsmagick in jessie;
the vulnerable code is in fact present
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -73195,7 +73195,6 @@ CVE-2017-6315 (Astaro Security Gateway (aka ASG) 7
allows remote attackers to ex
NOT-FOR-US: Astaro
CVE-2017-6335 (The QuantumTransferMode function in coders/tiff.c in
GraphicsMagick ...)
- graphicsmagick 1.3.25-8
- [jessie] - graphicsmagick <not-affected> (vulnerable code not present)
[wheezy] - graphicsmagick <not-affected> (vulnerable code not present)
NOTE: Fixed by:
https://sourceforge.net/p/graphicsmagick/code/ci/6156b4c2992d855ece6079653b3b93c3229fc4b8/
CVE-2017-6317 (Memory leak in the add_shader_program function in
vrend_renderer.c in ...)
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1910058c203caf1583f6468bc36fb9310da61836
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/1910058c203caf1583f6468bc36fb9310da61836
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
debian-security-tracker-commits@alioth-lists.debian.net
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
