diff options
| author | Sylvain Beucler <beuc@beuc.net> | 2021-01-08 15:32:09 +0100 |
|---|---|---|
| committer | Sylvain Beucler <beuc@beuc.net> | 2021-01-08 15:33:30 +0100 |
| commit | 17548ae73ebf77fde3c842dacf668eabaf1dfc9e (patch) | |
| tree | 5de866ab50dd676574b2d6a6d61ba24892d42dfe /data/CVE/2017.list | |
| parent | 801071d56e4f285d267a8f5b71a363c5e3fde2b6 (diff) | |
CVE-2017-12670/imagemagick: stretch ignored
Diffstat (limited to 'data/CVE/2017.list')
| -rw-r--r-- | data/CVE/2017.list | 11 |
1 files changed, 7 insertions, 4 deletions
diff --git a/data/CVE/2017.list b/data/CVE/2017.list index 74e59494e8..977db7a91c 100644 --- a/data/CVE/2017.list +++ b/data/CVE/2017.list @@ -2288,6 +2288,7 @@ CVE-2017-18029 (In ImageMagick 7.0.6-10 Q16, a memory leak vulnerability was fou - imagemagick 8:6.9.9.34+dfsg-3 (unimportant) NOTE: https://github.com/ImageMagick/ImageMagick/issues/691 NOTE: https://github.com/ImageMagick/ImageMagick/commit/d3144a8be81aed6e635de68f0d8e97881638a398 + NOTE: https://github.com/ImageMagick/ImageMagick6/commit/77fcc8d92a602299a23be9ac76887ba6cfe50bd3 CVE-2017-18028 (In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was foun ...) - imagemagick 8:6.9.9.34+dfsg-3 (unimportant) NOTE: https://github.com/ImageMagick/ImageMagick/issues/736 @@ -20420,11 +20421,13 @@ CVE-2017-11724 (The ReadMATImage function in coders/mat.c in ImageMagick through CVE-2017-12670 (In ImageMagick 7.0.6-3, missing validation was found in coders/mat.c, ...) {DLA-1785-1 DLA-1081-1} - imagemagick 8:6.9.7.4+dfsg-14 (low; bug #870020) - [stretch] - imagemagick <postponed> (Minor issue) + [stretch] - imagemagick <ignored> (Minor issue, PoC triggers earlier assertion, fix reverted upstream) NOTE: https://github.com/ImageMagick/ImageMagick/issues/610 - NOTE: https://github.com/ImageMagick/ImageMagick/commit/ab440f9ea11e0dbefb7a808cbb9441198758b0cb - NOTE: https://github.com/ImageMagick/ImageMagick/commit/75db34b6a4d642cb6f88c792942de27490c900e0 - NOTE: Upstream patch is apparently incomplete. POC still triggers segfault. + NOTE: https://github.com/ImageMagick/ImageMagick/commit/d9f1a91d93871cc6a5c0b99e8bacad4d730acf36 + NOTE: https://github.com/ImageMagick/ImageMagick/commit/de8cdeceafdc7bbdfcc55cd08e6a8b0cc979c91c + NOTE: https://github.com/ImageMagick/ImageMagick6/commit/ab440f9ea11e0dbefb7a808cbb9441198758b0cb + NOTE: https://github.com/ImageMagick/ImageMagick6/commit/75db34b6a4d642cb6f88c792942de27490c900e0 + NOTE: fix reverted with CVE-2017-18029 CVE-2017-13658 (In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missi ...) {DLA-2366-1 DLA-1785-1 DLA-1081-1} - imagemagick 8:6.9.7.4+dfsg-14 (low; bug #870019) |