white at alioth.debian.org
2008-Jul-17 13:01 UTC
[Secure-testing-commits] r9364 - data/CVE
Author: white Date: 2008-07-17 13:01:49 +0000 (Thu, 17 Jul 2008) New Revision: 9364 Modified: data/CVE/list Log: New graphicsmagick issue (several DoS); imagemagick still needs to be checked Modified: data/CVE/list ==================================================================--- data/CVE/list 2008-07-17 12:52:43 UTC (rev 9363) +++ data/CVE/list 2008-07-17 13:01:49 UTC (rev 9364) @@ -108,7 +108,10 @@ CVE-2008-3135 (Soldner Secret Wars 33724 and earlier allows remote attackers to cause ...) NOT-FOR-US: Soldner Secret Wars CVE-2008-3134 (Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 ...) - TODO: check + - graphicsmagick <unfixed> (low) + NOTE: several DoS fixed in 1.2.4 according to upstream + NOTE: http://sourceforge.net/project/shownotes.php?release_id=610253 + TODO: check imagemagick CVE-2008-3133 (SQL injection vulnerability in admin/index.php in BareNuked CMS 1.1.0, ...) NOT-FOR-US: BareNuked CMS CVE-2008-3132 (SQL injection vulnerability in the beamospetition (com_beamospetition) ...)