Sylvain Beucler pushed to branch master at Debian Security Tracker / security-tracker
Commits: 6a63adf9 by Sylvain Beucler at 2021-01-11T15:28:30+01:00 CVE-2020-27756/imagemagick: stretch not-affected - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -19301,10 +19301,11 @@ CVE-2020-27757 (A floating point math calculation in ScaleAnyToQuantum() of /Mag CVE-2020-27756 (In ParseMetaGeometry() of MagickCore/geometry.c, image height and widt ...) - imagemagick 8:6.9.11.24+dfsg-1 [buster] - imagemagick <ignored> (Minor issue) - [stretch] - imagemagick <postponed> (Minor issue, DoS/div0 while package is mainly CLI) + [stretch] - imagemagick <not-affected> (Vulnerable code introduced later) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1725 NOTE: ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/f35eca82b0c294ff9d0ccad104a881c3ae2ba913 NOTE: ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/d3d96f05950275b916207bf9df03640ef3e9fd6e + NOTE: Introduced in https://github.com/ImageMagick/ImageMagick6/commit/7dd318e6f7f86eb41e474e3131c59ea26af6c1b2 (6.9.9-34) CVE-2020-27755 (in SetImageExtent() of /MagickCore/image.c, an incorrect image depth s ...) - imagemagick 8:6.9.11.24+dfsg-1 (unimportant) NOTE: https://github.com/ImageMagick/ImageMagick/issues/1756 View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a63adf9e7ee2f60a2ce06b28e22c5a0479a1f9c -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6a63adf9e7ee2f60a2ce06b28e22c5a0479a1f9c You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits