[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add reference for CVE-2018-9135 to upstream issue

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
39f67361 by Salvatore Bonaccorso at 2018-04-03T07:19:44+02:00
Add reference for CVE-2018-9135 to upstream issue

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -212,7 +212,9 @@ CVE-2018-9136 (windrvr1260.sys in Jungo DriverWizard 
WinDriver 12.6.0 allows att
        NOT-FOR-US: Jungo
 CVE-2018-9135 (In ImageMagick 7.0.7-24 Q16, there is a heap-based buffer 
over-read in ...)
        - imagemagick <unfixed> (unimportant)
-       NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/4f7196b0b7539b113f2580b6a77aa496813d8899
+       NOTE: https://github.com/ImageMagick/ImageMagick/issues/1009
+       NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/361ed689cc8e56fd125f9d0d6508e9eb303bdca6
+       NOTE: ImageMagick-6: 
https://github.com/ImageMagick/ImageMagick/commit/4f7196b0b7539b113f2580b6a77aa496813d8899
        NOTE: webp support not enabled, see #806425
 CVE-2018-9134 (file_manage_control.php in DedeCMS 5.7 has CSRF in an 
fmdo=rename ...)
        NOT-FOR-US: DedeCMS



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/39f67361ceb4771dad7fbed97e89f322594eb9b6

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/39f67361ceb4771dad7fbed97e89f322594eb9b6
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits