[Secure-testing-commits] r46560 - data/CVE

Salvatore Bonaccorso Fri, 25 Nov 2016 12:59:55 -0800

Author: carnil
Date: 2016-11-25 20:58:13 +0000 (Fri, 25 Nov 2016)
New Revision: 46560


Modified:
   data/CVE/list
Log:
CVE-2016-8862, reconfirmed, not yet fixed correctly in sid

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-11-25 20:51:34 UTC (rev 46559)
+++ data/CVE/list       2016-11-25 20:58:13 UTC (rev 46560)
@@ -2533,7 +2533,7 @@
        NOTE: Only thing the attacker could do here is self-dos own connection
 CVE-2016-8862 [imagemagick: memory allocation failure in AcquireMagickMemory 
(memory.c)]
        RESERVED
-       - imagemagick 8:6.9.6.2+dfsg-2 (bug #845634)
+       - imagemagick <unfixed> (bug #845634)
        NOTE: 
https://blogs.gentoo.org/ago/2016/10/17/imagemagick-memory-allocation-failure-in-acquiremagickmemory-memory-c/
        NOTE: Fixed by: 
https://github.com/ImageMagick/ImageMagick/commit/aea6c6507f55632829e6432f8177a084a57c9fcc
        NOTE: The initial patch was initiall meant to be incomplete and 
resulted in CVE-2016-8866. So when fixing


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r46560 - data/CVE

Reply via email to