Add CVE-2017-17913/graphicsmagick

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58974 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: Salvatore Bonaccorso <carnil@debian.org> 2017-12-27 22:10:20 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2017-12-27 22:10:20 +0000
commit: 01c0ef66afd986fddaf95c4a9171839f986ea43e (patch)
tree: 4b71065396e2878749226fa43c3759ab00dc5368 /data
parent: 20be4cf7e97eb4686ae98507df249193ab2255d3 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index d66ffd2385..60f665e06d 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -74,7 +74,10 @@ CVE-2017-17914 (In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the fu
 	NOTE: https://github.com/ImageMagick/ImageMagick/commit/650ec57d84b7b1dce66435b8cd3b58f7ae66db1b
 	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/42781eeebadf111a2e01559735ea504a78192046
 CVE-2017-17913 (In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a stack-based ...)
-	TODO: check
+	- graphicsmagick <unfixed>
+	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/6dda3c33f35f
+	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/536/
+	TODO: check, potentially just unimportant like similar issue in imagemagick
 CVE-2017-17912 (In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based ...)
 	TODO: check
 CVE-2017-17911 (packages/core/contact.php in Archon 3.21 rev-1 has XSS in the referer ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2017-12-27 22:10:20 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2017-12-27 22:10:20 +0000
commit	01c0ef66afd986fddaf95c4a9171839f986ea43e (patch)
tree	4b71065396e2878749226fa43c3759ab00dc5368 /data
parent	20be4cf7e97eb4686ae98507df249193ab2255d3 (diff)