Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0e957da6 by Salvatore Bonaccorso at 2017-12-31T17:27:26+01:00
Add note for CVE-2017-17681/imagemagick
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -5849,6 +5849,8 @@ CVE-2017-17681 (In ImageMagick 7.0.7-12 Q16, an infinite
loop vulnerability was
NOTE: different fix:
https://github.com/ImageMagick/ImageMagick/commit/73d59a74e0b0a864c1a9581b8a4bdbee427125e2
NOTE: ImageMagick-6:
https://github.com/ImageMagick/ImageMagick/commit/edf1b9408492b97cd08111a0a9cb123f6391dc5b
NOTE: different fix for IM-6:
https://github.com/ImageMagick/ImageMagick/commit/cae42160e5ab6de4b2a9433267e143ce295ae957
+ NOTE: The fix involves all done changes on the relevant part of
coders/psd.c between
+ NOTE: (and including) edf1b9408492b97cd08111a0a9cb123f6391dc5b and
cae42160e5ab6de4b2a9433267e143ce295ae957 .
CVE-2017-17680 (In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was
found in ...)
- imagemagick <unfixed> (unimportant)
NOTE: https://github.com/ImageMagick/ImageMagick/issues/873
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e957da6714bea229bbfcf4cc88d09caf3f17b8d
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/0e957da6714bea229bbfcf4cc88d09caf3f17b8d
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
