[Secure-testing-commits] r55868 - data/CVE

Salvatore Bonaccorso Mon, 18 Sep 2017 05:50:45 -0700

Author: carnil
Date: 2017-09-18 12:50:28 +0000 (Mon, 18 Sep 2017)
New Revision: 55868


Modified:
   data/CVE/list
Log:
Update information for CVE-2017-14249

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-09-18 12:34:32 UTC (rev 55867)
+++ data/CVE/list       2017-09-18 12:50:28 UTC (rev 55868)
@@ -832,7 +832,7 @@
        NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/2071d67ebf729f76d73c33c1152df4816d1d79ac
        NOTE: ImageMagick-6: 
https://github.com/ImageMagick/ImageMagick/commit/66112b7a7b64f688efe6fec53a829874a74dea04
 CVE-2017-14248 (A heap-based buffer over-read in SampleImage() in 
MagickCore/resize.c ...)
-       - imagemagick <unfixed> (low)
+       - imagemagick <not-affected> (Vulnerable code introduced later)
        NOTE: https://github.com/ImageMagick/ImageMagick/issues/717
        NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/c5402b6e0fcf8b694ae2af6a6652ebb8ce0ccf46
 CVE-2017-14247 (SQL Injection exists in the EyesOfNetwork web interface (aka 
eonweb) ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r55868 - data/CVE

Reply via email to