[Secure-testing-commits] r55849 - data/CVE

Salvatore Bonaccorso Mon, 18 Sep 2017 02:13:52 -0700

Author: carnil
Date: 2017-09-18 09:13:21 +0000 (Mon, 18 Sep 2017)
New Revision: 55849


Modified:
   data/CVE/list
Log:
Add CVE-2017-14533/imagemagick

Modified: data/CVE/list
===================================================================
--- data/CVE/list       2017-09-18 09:10:15 UTC (rev 55848)
+++ data/CVE/list       2017-09-18 09:13:21 UTC (rev 55849)
@@ -93,7 +93,10 @@
 CVE-2017-14534 (Cross Site Scripting (XSS) exists in NexusPHP 
1.5.beta5.20120707 via ...)
        TODO: check
 CVE-2017-14533 (ImageMagick 7.0.6-6 has a memory leak in ReadMATImage in 
coders/mat.c. ...)
-       TODO: check
+       - imagemagick <unfixed> (unimportant)
+       NOTE: https://github.com/ImageMagick/ImageMagick/issues/648
+       NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/f1f2089e79bcf5714cefba7cdc47049b4ac53c6b
+       NOTE: ImageMagick-6: 
https://github.com/ImageMagick/ImageMagick/commit/bdfc5538051ad0d1c2083ba2a29180ff6abea907
 CVE-2017-14532 (ImageMagick 7.0.7-0 has a NULL Pointer Dereference in 
TIFFIgnoreTags in ...)
        TODO: check
 CVE-2017-14531 (ImageMagick 7.0.7-0 has a memory exhaustion issue in 
ReadSUNImage in ...)


_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

[Secure-testing-commits] r55849 - data/CVE

Reply via email to