Author: sectracker Date: 2016-09-22 09:10:19 +0000 (Thu, 22 Sep 2016) New Revision: 44821
Modified: data/CVE/list Log: automatic update Modified: data/CVE/list =================================================================== --- data/CVE/list 2016-09-22 07:57:51 UTC (rev 44820) +++ data/CVE/list 2016-09-22 09:10:19 UTC (rev 44821) @@ -4664,10 +4664,14 @@ RESERVED NOT-FOR-US: Samsung CVE-2016-7513 [off-by-one error leading to segfault] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832455) NOTE: https://github.com/ImageMagick/ImageMagick/commit/a54fe0e8600eaf3dc6fe717d3c0398001507f723 CVE-2016-7514 [out-of-bounds read in coders/psd.c] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832457) NOTE: https://bugs.launchpad.net/bugs/1533442 @@ -4678,6 +4682,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/280215b9936d145dd5ee91403738ccce1333cab1 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7515 [rle file handling for corrupted file] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832461) NOTE: https://bugs.launchpad.net/bugs/1533445 @@ -4685,6 +4691,7 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/2ad6d33493750a28a5a655d319a8e0b16c392de1 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2015-8957 [buffer overflow in sun file handling] + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832464) NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26838 @@ -4693,6 +4700,7 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/450bd716ed3b9186dd10f9e60f630a3d9eeea2a4 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2015-8958 [potential DOS in sun file handling due to malformed files] + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832465) NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26857 @@ -4702,30 +4710,40 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/8ea44b48a182dd46d018f4b4f09a5e2ee9638105 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7516 [out of bunds problem in rle, pict, viff and sun files] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832467) NOTE: https://bugs.launchpad.net/bugs/1533452 NOTE: https://github.com/ImageMagick/ImageMagick/issues/77 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7517 + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832467) NOTE: https://bugs.launchpad.net/bugs/1533449 NOTE: https://github.com/ImageMagick/ImageMagick/issues/80 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7518 + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832467) NOTE: https://bugs.launchpad.net/bugs/1533447 NOTE: https://github.com/ImageMagick/ImageMagick/issues/81 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7519 + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832467) NOTE: https://bugs.launchpad.net/bugs/1533445 NOTE: https://github.com/ImageMagick/ImageMagick/issues/82 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7520 [heap overflow in hdr file handling] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832469) NOTE: https://bugs.launchpad.net/bugs/1537213 @@ -4733,6 +4751,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/14e606db148d6ebcaae20f1e1d6d71903ca4a556 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7521 [heap buffer overflow in psd file handling] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832474) NOTE: https://bugs.launchpad.net/bugs/1537418 @@ -4740,6 +4760,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/30eec879c8b446b0ea9a3bb0da1a441cc8482bc4 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7522 [out of bound access for malformed psd file] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832475) NOTE: https://bugs.launchpad.net/bugs/1537419 @@ -4747,17 +4769,23 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/4b1b9c0522628887195bad3a6723f7000b0c9a58 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7523 [meta file out of bound access] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832478) NOTE: https://bugs.launchpad.net/bugs/1537420 NOTE: https://github.com/ImageMagick/ImageMagick/issues/94 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7524 + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832478) NOTE: https://bugs.launchpad.net/bugs/1537422 NOTE: https://github.com/ImageMagick/ImageMagick/issues/96 CVE-2016-7525 [heap buffer overflow in psd file coder] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832480) NOTE: https://bugs.launchpad.net/bugs/1537424 @@ -4765,6 +4793,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/5f16640725b1225e6337c62526e6577f0f88edb8 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7526 [out of bound access in wpg file coder] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832482) NOTE: https://bugs.launchpad.net/bugs/1539050 @@ -4773,6 +4803,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/d9b2209a69ee90d8df81fb124eb66f593eb9f599 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7527 + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832482) NOTE: https://bugs.launchpad.net/bugs/1542115 @@ -4780,6 +4812,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/a251039393f423c7858e63cab6aa98d17b8b7a41 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7528 [out of bound access for viff file coder] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832483) NOTE: https://bugs.launchpad.net/bugs/1537425 @@ -4787,6 +4821,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/ca0c886abd6d3ef335eb74150cd23b89ebd17135 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7529 [out of bound access in xcf file coder] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832504) NOTE: https://bugs.launchpad.net/bugs/1539051 @@ -4796,6 +4832,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/a2e1064f288a353bc5fef7f79ccb7683759e775c NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7530 [out of bound in quantum handling] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832506) NOTE: https://bugs.launchpad.net/bugs/1539067 @@ -4807,6 +4845,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/b5ed738f8060266bf4ae521f7e3ed145aa4498a3 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7531 [pbd file out of bound access] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832633) NOTE: https://bugs.launchpad.net/bugs/1539061 @@ -4814,12 +4854,16 @@ NOTE: https://github.com/ImageMagick/ImageMagick/issues/107 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7532 [Fix handling of corrupted psd file] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832776) NOTE: https://bugs.launchpad.net/bugs/1539066 NOTE: https://github.com/ImageMagick/ImageMagick/issues/109 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7533 [wpg file out of bound for corrupted file] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832780) NOTE: https://bugs.launchpad.net/bugs/1542114 @@ -4827,6 +4871,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/bef1e4f637d8f665bc133a9c6d30df08d983bc3a NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7534 [out of bound access in generic decoder] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832785) NOTE: https://bugs.launchpad.net/bugs/1542785 @@ -4834,12 +4880,16 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/430403b0029b37decf216d57f810899cab2317dd NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7535 [out of bound access for corrupted psd file] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832787) NOTE: https://bugs.launchpad.net/bugs/1545180 NOTE: https://github.com/ImageMagick/ImageMagick/issues/128 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7536 [SEGV reported in corrupted profile handling] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832789) NOTE: https://bugs.launchpad.net/bugs/1545367 @@ -4847,6 +4897,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/478cce544fdf1de882d78381768458f397964453 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7537 [out of bound access for corrupted pdb file] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832791) NOTE: https://bugs.launchpad.net/bugs/1553366 @@ -4854,6 +4906,8 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/424d40ebfcde48bb872eba75179d3d73704fdf1f NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7538 [SIGABRT for corrupted pdb file] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832793) NOTE: https://bugs.launchpad.net/bugs/1556273 @@ -4861,12 +4915,14 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/53c1dcd34bed85181b901bfce1a2322f85a59472 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2015-8959 [DOS due to corrupted DDS files] + {DSA-3652-1} - imagemagick <unfixed> (bug #832944) NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26861 NOTE: https://github.com/ImageMagick/ImageMagick/commit/3ab016764c7f787829d9065440d86f5609765110 NOTE: https://github.com/ImageMagick/ImageMagick/commit/9b428b7af688fe319320aed15f2b94281d1e37b4 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2014-9907 [DOS due to corrupted DDS files] + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #832942) NOTE: https://github.com/ImageMagick/ImageMagick/commit/21eae25a8db5fdcd112dbcfcd9e5c37e32d32e2f @@ -4874,12 +4930,16 @@ NOTE: https://github.com/ImageMagick/ImageMagick/commit/504ada82b6fa38a30c846c1c29116af7290decb2 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7539 [potential DOS by not releasing memory] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #833101) NOTE: Fixed by: https://github.com/ImageMagick/ImageMagick/commit/4e81ce8b07219c69a9aeccb0f7f7b927ca6db74c NOTE: http://www.imagemagick.org/discourse-server/viewtopic.php?f=2&t=28946 NOTE: http://www.openwall.com/lists/oss-security/2016/08/07/1 CVE-2016-7540 [writing to rgf format aborts] + RESERVED + {DSA-3652-1} [experimental] - imagemagick 8:6.9.5.9+dfsg-1 - imagemagick <unfixed> (bug #827643) NOTE: https://bugs.launchpad.net/bugs/1594060 _______________________________________________ Secure-testing-commits mailing list Secure-testing-commits@lists.alioth.debian.org http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits