[prev in list] [next in list] [prev in thread] [next in thread] 

List:       graphicsmagick-commit
Subject:    [GM-commit] GraphicsMagick: Update ChangeLog to reference CVE-2017-11403
From:       GraphicsMagick Commits <graphicsmagick-commit () lists ! sourceforge ! net>
Date:       2017-07-19 10:42:49
Message-ID: mailman.32052.1500460982.17807.graphicsmagick-commit () lists ! sourceforge ! net
[Download RAW message or body]

changeset 37f4c3614736 in /hg/GraphicsMagick
details: http://hg.GraphicsMagick.org/hg/GraphicsMagick?cmd=changeset;node=37f4c3614736
summary: Update ChangeLog to reference CVE-2017-11403

diffstat:

 ChangeLog |  1 +
 1 files changed, 1 insertions(+), 0 deletions(-)

diffs (11 lines):

diff -r af1d398ec171 -r 37f4c3614736 ChangeLog
--- a/ChangeLog	Sun Jul 16 08:13:16 2017 -0400
+++ b/ChangeLog	Wed Jul 19 06:42:41 2017 -0400
@@ -27,6 +27,7 @@
 	in MNG FRAM change_clipping processing.
 	* coders/png.c (ReadMNGImage): Fix out-of-order CloseBlob()
 	and DestroyImageList() that caused a use-after-free crash.
+        Fixes CVE-2017-11403.  This bug was discovered by Agostino Sarubbo.
 
 2017-07-08  Glenn Randers-Pehrson  <glennrp@simple.dallas.tx.us>
 

------------------------------------------------------------------------------
Check out the vibrant tech community on one of the world's most
engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________
Graphicsmagick-commit mailing list
Graphicsmagick-commit@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/graphicsmagick-commit
[prev in list] [next in list] [prev in thread] [next in thread]