[Secure-testing-commits] r45601 - data/CVE

Tue, 25 Oct 2016 11:50:14 -0700 

Author: carnil
Date: 2016-10-25 18:49:10 +0000 (Tue, 25 Oct 2016)
New Revision: 45601

Modified:
   data/CVE/list
Log:
Update status of src:imagemagick issues after feedback from maintainer

Mark CVE-2016-371{4,5,6,7,8} as fixed with first version which entered
unstable containing the fixes, which is 8:6.9.6.2+dfsg-2.

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-10-25 18:45:44 UTC (rev 45600)
+++ data/CVE/list       2016-10-25 18:49:10 UTC (rev 45601)
@@ -16580,27 +16580,27 @@
        REJECTED
 CVE-2016-3718 (The (1) HTTP and (2) FTP coders in ImageMagick before 6.9.3-10 
and 7.x ...)
        {DSA-3580-1 DLA-486-1 DLA-484-1}
-       - imagemagick <unfixed>
+       - imagemagick 8:6.9.6.2+dfsg-2
        - graphicsmagick 1.3.24-1
        NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3717 (The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 
7.0.1-1 ...)
        {DSA-3580-1 DLA-486-1 DLA-484-1}
-       - imagemagick <unfixed>
+       - imagemagick 8:6.9.6.2+dfsg-2
        - graphicsmagick 1.3.24-1
        NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3716 (The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 
7.0.1-1 ...)
        {DSA-3580-1 DLA-486-1 DLA-484-1}
-       - imagemagick <unfixed>
+       - imagemagick 8:6.9.6.2+dfsg-2
        - graphicsmagick 1.3.24-1
        NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3715 (The EPHEMERAL coder in ImageMagick before 6.9.3-10 and 7.x 
before ...)
        {DSA-3580-1 DLA-486-1 DLA-484-1}
-       - imagemagick <unfixed>
+       - imagemagick 8:6.9.6.2+dfsg-2
        - graphicsmagick 1.3.24-1
        NOTE: https://sourceforge.net/p/graphicsmagick/mailman/message/35072963/
 CVE-2016-3714 (The (1) EPHEMERAL, (2) HTTPS, (3) MVG, (4) MSL, (5) TEXT, (6) 
SHOW, ...)
        {DSA-3580-1 DLA-486-1 DLA-484-1}
-       - imagemagick <unfixed>
+       - imagemagick 8:6.9.6.2+dfsg-2
        NOTE: Workaround: https://bugzilla.redhat.com/show_bug.cgi?id=1332492#c3
        NOTE: 
https://www.imagemagick.org/discourse-server/viewtopic.php?f=4&t=29588
        NOTE: Original upstream applied patches are incomplete and still to be 
finished


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to