[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] LTS: annotate CVE-2018-5248/imagemagick as not affecting wheezy

Sun, 07 Jan 2018 20:28:06 -0800 

Roberto C. Sánchez pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
f9ccd47e by Roberto C. Sánchez at 2018-01-07T23:27:19-05:00
LTS: annotate CVE-2018-5248/imagemagick as not affecting wheezy

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -17,6 +17,7 @@ CVE-2018-5249 (Cross-site scripting (XSS) vulnerability in 
Shaarli before 0.8.5 
        - shaarli <itp> (bug #864559)
 CVE-2018-5248 (In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer 
over-read in ...)
        - imagemagick <unfixed> (bug #886588)
+       [wheezy] - imagemagick <not-affected> (Vulnerable code not present)
        NOTE: https://github.com/ImageMagick/ImageMagick/issues/927
        NOTE: ImageMagick-6: 
https://github.com/ImageMagick/ImageMagick/commit/c76434c16b5ac8861ee0c5d5c3ab8974fae3d624
        NOTE: 
https://github.com/ImageMagick/ImageMagick/commit/0272305f91763b5ce119a2c7a0e0084d8241a58d



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f9ccd47e586260863b1945290620ff208144d677

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f9ccd47e586260863b1945290620ff208144d677
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits

Reply via email to