Author: carnil
Date: 2016-10-16 06:22:18 +0000 (Sun, 16 Oct 2016)
New Revision: 45358

Modified:
   data/CVE/list
Log:
Add CVE-2016-8683/graphicsmagick

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-10-16 06:14:58 UTC (rev 45357)
+++ data/CVE/list       2016-10-16 06:22:18 UTC (rev 45358)
@@ -496,6 +496,10 @@
        NOTE: and no mechanism is currently known by which an attacker who does 
not
        NOTE: already have root privileges could induce systemd to send messages
        NOTE: that would trigger the format string vulnerability.
+CVE-2016-8683 [memory allocation failure in ReadPCXImage (pcx.c)]
+       - graphicsmagick <unfixed>
+       NOTE: 
https://blogs.gentoo.org/ago/2016/09/15/graphicsmagick-memory-allocation-failure-in-readpcximage-pcx-c/
+       NOTE: Fixed by: 
http://hg.code.sf.net/p/graphicsmagick/code/rev/b9edafd479b9
 CVE-2016-8682 [stack-based buffer overflow in ReadSCTImage (sct.c)]
        - graphicsmagick <unfixed>
        NOTE: 
https://blogs.gentoo.org/ago/2016/09/15/graphicsmagick-stack-based-buffer-overflow-in-readsctimage-sct-c/


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to