[Secure-testing-commits] r2957 - data/CVE
Moritz Muehlenhoff
jmm-guest at costa.debian.org
Tue Dec 6 21:54:58 UTC 2005
Author: jmm-guest
Date: 2005-12-06 21:54:53 +0000 (Tue, 06 Dec 2005)
New Revision: 2957
Modified:
data/CVE/list
Log:
pdftohtml evealuated wrt local xpdf code copy
it's partially affected, bug filed
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2005-12-06 21:52:44 UTC (rev 2956)
+++ data/CVE/list 2005-12-06 21:54:53 UTC (rev 2957)
@@ -2493,14 +2493,17 @@
RESERVED
- xpdf <unfixed> (bug #342281; medium)
- gpdf <unfixed> (bug #342286; medium)
+ - pdftohtml <not-affected> (Vulnerable xpdf code not contained)
CVE-2005-3192 [xpdf stream predictor heap overflow]
RESERVED
- xpdf <unfixed> (bug #342281; medium)
- gpdf <unfixed> (bug #342286; medium)
+ - pdftohtml <unfixed> (bug filed; medium)
CVE-2005-3191 [xpdf dctstream heap overflow]
RESERVED
- xpdf <unfixed> (bug #342281; medium)
- gpdf <unfixed> (bug #342286; medium)
+ - pdftohtml <unfixed> (bug filed; medium)
CVE-2005-3190 (Buffer overflow in Computer Associates (CA) iGateway 3.0 and 4.0 ...)
NOT-FOR-US: iGateway
CVE-2005-3189 (Directory traversal vulnerability in Qualcomm WorldMail IMAP Server ...)
More information about the Secure-testing-commits
mailing list