Add CVE-2017-17914/imagemagick

git-svn-id: svn+ssh://svn.debian.org/svn/secure-testing@58973 e39458fd-73e7-0310-bf30-c45bca0a0e42
author: Salvatore Bonaccorso <carnil@debian.org> 2017-12-27 22:07:12 +0000
committer: Salvatore Bonaccorso <carnil@debian.org> 2017-12-27 22:07:12 +0000
commit: 20be4cf7e97eb4686ae98507df249193ab2255d3 (patch)
tree: 910d68ba64b8fc72458fda049dba0b204da02d9d /data
parent: e44eb2f80268931266474b2701223f28d9b2a4c0 (diff)
1 files changed, 4 insertions, 1 deletions
diff --git a/data/CVE/list b/data/CVE/list
index f0e68c8327..d66ffd2385 100644
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -69,7 +69,10 @@ CVE-2017-17915 (In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-base
 	NOTE: http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/1721f1b7e67a
 	NOTE: https://sourceforge.net/p/graphicsmagick/bugs/535/
 CVE-2017-17914 (In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ...)
-	TODO: check
+	- imagemagick <unfixed>
+	NOTE: https://github.com/ImageMagick/ImageMagick/issues/908
+	NOTE: https://github.com/ImageMagick/ImageMagick/commit/650ec57d84b7b1dce66435b8cd3b58f7ae66db1b
+	NOTE: ImageMagick-6: https://github.com/ImageMagick/ImageMagick/commit/42781eeebadf111a2e01559735ea504a78192046
 CVE-2017-17913 (In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a stack-based ...)
 	TODO: check
 CVE-2017-17912 (In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based ...)
author	Salvatore Bonaccorso <carnil@debian.org>	2017-12-27 22:07:12 +0000
committer	Salvatore Bonaccorso <carnil@debian.org>	2017-12-27 22:07:12 +0000
commit	20be4cf7e97eb4686ae98507df249193ab2255d3 (patch)
tree	910d68ba64b8fc72458fda049dba0b204da02d9d /data
parent	e44eb2f80268931266474b2701223f28d9b2a4c0 (diff)