[Secure-testing-commits] r5126 - data/CVE

Fri Dec 15 21:05:40 CET 2006

Author: fw
Date: 2006-12-15 21:05:38 +0100 (Fri, 15 Dec 2006)
New Revision: 5126

Modified:
   data/CVE/list
Log:
Record that several cupsys versions where "fixed" by switching to an
external PDF implementation.


Modified: data/CVE/list
===================================================================

--- data/CVE/list	2006-12-15 16:11:59 UTC (rev 5125)
+++ data/CVE/list	2006-12-15 20:05:38 UTC (rev 5126)
@@ -17572,6 +17572,8 @@
 	- libextractor 0.5.9-1
 	- pdfkit.framework 0.8-4
 	- pdftohtml 0.36-12
+	- cupsys 1.1.22-7
+	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
 CVE-2005-3627 (Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
@@ -17583,6 +17585,8 @@
 	- libextractor 0.5.9-1
 	- pdfkit.framework 0.8-4
 	- pdftohtml 0.36-12
+	- cupsys 1.1.22-7
+	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
 CVE-2005-3626 (Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.3-2
@@ -17593,6 +17597,8 @@
 	- libextractor 0.5.9-1
 	- pdfkit.framework 0.8-4
 	- pdftohtml 0.36-12
+	- cupsys 1.1.22-7
+	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
 CVE-2005-3625 (Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
@@ -17604,6 +17610,8 @@
 	- libextractor 0.5.9-1
 	- pdfkit.framework 0.8-4
 	- pdftohtml 0.36-12
+	- cupsys 1.1.22-7
+	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
 CVE-2005-3624 (The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
@@ -17615,6 +17623,8 @@
 	- libextractor 0.5.9-1
 	- pdfkit.framework 0.8-4
 	- pdftohtml 0.36-12
+	- cupsys 1.1.22-7
+	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
 CVE-2005-3623 (nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR ...)
 	[sarge] - kernel-source-2.6.8 <not-affected> (Does not contain NFS ACLs)
 	- linux-2.6 2.6.14-7
@@ -30306,8 +30316,9 @@
 	- kdegraphics <not-affected> (Initial Debian fix was already correct)
 	- tetex-bin <not-affected> (Initial Debian fix was already correct)
 	- pdftohtml <not-affected> (Initial Debian fix was already correct)
-	- cupsys <not-affected> (Uses an external xpdf now)
+	- cupsys 1.1.22-7
 	NOTE: https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=135393
+	NOTE: cupsys uses an external xpdf now.
 CVE-2005-0205 (KPPP 2.1.2 in KDE 3.1.5 and earlier, when setuid root without certain ...)
 	{DSA-692-1}
 	- kdenetwork 4:3.1.6


