Author: anarcat
Date: 2016-10-26 21:14:07 +0000 (Wed, 26 Oct 2016)
New Revision: 45644
Modified:
data/DLA/list
data/dla-needed.txt
Log:
Reserve DLA-683-1 for graphicsmagick
Modified: data/DLA/list
===================================================================
--- data/DLA/list 2016-10-26 21:10:13 UTC (rev 45643)
+++ data/DLA/list 2016-10-26 21:14:07 UTC (rev 45644)
@@ -1,3 +1,6 @@
+[26 Oct 2016] DLA-683-1 graphicsmagick - security update
+ {CVE-2016-7448 CVE-2016-7996 CVE-2016-7997 CVE-2016-8682 CVE-2016-8683
CVE-2016-8684}
+ [wheezy] - graphicsmagick 1.3.16-1.1+deb7u5
[26 Oct 2016] DLA-682-1 libdatetime-timezone-perl - new upstream version
[wheezy] - libdatetime-timezone-perl 1:1.58-1+2016h
[26 Oct 2016] DLA-681-1 tzdata - new upstream version
Modified: data/dla-needed.txt
===================================================================
--- data/dla-needed.txt 2016-10-26 21:10:13 UTC (rev 45643)
+++ data/dla-needed.txt 2016-10-26 21:14:07 UTC (rev 45644)
@@ -14,8 +14,6 @@
dwarfutils
NOTE: New round of CVEs not seemingly covered by DLA 669-1.
--
-graphicsmagick (Antoine Beaupré)
---
icu (Roberto C. Sánchez)
NOTE: I have been unable to reproduce the CVE-2016-7415 crash as described
in the PHP bug report
--
_______________________________________________
Secure-testing-commits mailing list
[email protected]
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
