[Secure-testing-commits] r47473 - in data: CVE DLA DSA

Mon, 26 Dec 2016 21:55:02 -0800 

Author: carnil
Date: 2016-12-27 05:54:25 +0000 (Tue, 27 Dec 2016)
New Revision: 47473

Modified:
   data/CVE/list
   data/DLA/list
   data/DSA/list
Log:
CVE-2016-10064/imagemagick assigned

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2016-12-27 05:54:15 UTC (rev 47472)
+++ data/CVE/list       2016-12-27 05:54:25 UTC (rev 47473)
@@ -9278,13 +9278,10 @@
        NOTE: https://github.com/ImageMagick/ImageMagick/issues/129
        NOTE: https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1545183
        NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/12/20/3
-CVE-2016-XXXX [Better check for bufferoverflow for TIFF handling]
+CVE-2016-10064 [Better check for bufferoverflow for TIFF handling]
        - imagemagick 8:6.9.6.2+dfsg-2 (bug #845202)
-       [jessie] - imagemagick 8:6.8.9.9-5+deb8u6
-       [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
-       NOTE: Workaround entry for DSA-3726-1 until CVEs assigned
        NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/f8877abac8e568b2f339cca70c2c3c1b6eaec288
-       NOTE: CVE Request: 
http://www.openwall.com/lists/oss-security/2016/12/20/3
+       NOTE: http://www.openwall.com/lists/oss-security/2016/12/20/3
 CVE-2016-10063 [Check validity of extend during TIFF file reading]
        - imagemagick 8:6.9.6.2+dfsg-2 (bug #845198)
        NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/2bb6941a2d557f26a2f2049ade466e118eeaab91

Modified: data/DLA/list
===================================================================
--- data/DLA/list       2016-12-27 05:54:15 UTC (rev 47472)
+++ data/DLA/list       2016-12-27 05:54:25 UTC (rev 47473)
@@ -26,7 +26,7 @@
        {CVE-2016-4412 CVE-2016-6626 CVE-2016-9849 CVE-2016-9850 CVE-2016-9861 
CVE-2016-9864 CVE-2016-9865}
        [wheezy] - phpmyadmin 4:3.4.11.1-2+deb7u7
 [21 Dec 2016] DLA-756-1 imagemagick - security update
-       {CVE-2016-7799 CVE-2016-8707 CVE-2016-8862 CVE-2016-8866 CVE-2016-9556 
CVE-2016-10059 CVE-2016-10060 CVE-2016-10061 CVE-2016-10063}
+       {CVE-2016-7799 CVE-2016-8707 CVE-2016-8862 CVE-2016-8866 CVE-2016-9556 
CVE-2016-10059 CVE-2016-10060 CVE-2016-10061 CVE-2016-10063 CVE-2016-10064}
        [wheezy] - imagemagick 8:6.7.7.10-5+deb7u10
 [21 Dec 2016] DLA-755-1 dcmtk - security update
        {CVE-2015-8979}

Modified: data/DSA/list
===================================================================
--- data/DSA/list       2016-12-27 05:54:15 UTC (rev 47472)
+++ data/DSA/list       2016-12-27 05:54:25 UTC (rev 47473)
@@ -67,7 +67,7 @@
        {CVE-2016-4330 CVE-2016-4331 CVE-2016-4332 CVE-2016-4333}
        [jessie] - hdf5 1.8.13+docs-15+deb8u1
 [26 Nov 2016] DSA-3726-1 imagemagick - security update
-       {CVE-2016-7799 CVE-2016-7906 CVE-2016-8677 CVE-2016-8862 CVE-2016-9556 
CVE-2016-9559 CVE-2016-10059 CVE-2016-10061 CVE-2016-10063}
+       {CVE-2016-7799 CVE-2016-7906 CVE-2016-8677 CVE-2016-8862 CVE-2016-9556 
CVE-2016-9559 CVE-2016-10059 CVE-2016-10061 CVE-2016-10063 CVE-2016-10064}
        [jessie] - imagemagick 8:6.8.9.9-5+deb8u6
 [27 Nov 2016] DSA-3725-1 icu - security update
        {CVE-2014-9911 CVE-2015-2632 CVE-2015-4844 CVE-2016-0494 CVE-2016-6293 
CVE-2016-7415}


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to