[Secure-testing-commits] r5312 - data/CVE

Florian Weimer fw at alioth.debian.org
Sat Jan 20 20:41:40 CET 2007 

Author: fw
Date: 2007-01-20 20:41:37 +0100 (Sat, 20 Jan 2007)
New Revision: 5312

Modified:
   data/CVE/list
Log:
Fix a few issues where tetex-bin was latently vulnerable


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-01-20 19:31:57 UTC (rev 5311)
+++ data/CVE/list	2007-01-20 19:41:37 UTC (rev 5312)
@@ -19506,10 +19506,11 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	- tetex-bin 3.0-12
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3627 (Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
-	- tetex <not-affected> (Links dynamically to poppler)
 	- kdegraphics 4:3.5.0-3
 	- gpdf 2.10.0-2 (bug #342286)
 	- xpdf 3.01-4
@@ -19519,6 +19520,8 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	- tetex-bin 3.0-12
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3626 (Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.3-2
@@ -19531,10 +19534,12 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	- tetex-bin 3.0-12
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3625 (Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
-	- tetex <not-affected> (Links dynamically to poppler)
+	- tetex 3.0-12
 	- kdegraphics 4:3.5.0-3
 	- xpdf 3.01-4
 	- gpdf 2.10.0-2 (bug #342286)
@@ -19544,10 +19549,11 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3624 (The CCITTFaxStream::CCITTFaxStream function in Stream.cc for xpdf, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1 DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
-	- tetex <not-affected> (Links dynamically to poppler)
+	- tetex-bin 3.0-12
 	- gpdf 2.10.0-2 (bug #342286)
 	- kdegraphics 4:3.5.0-3
 	- xpdf 3.01-4
@@ -19557,6 +19563,7 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3623 (nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR ...)
 	[sarge] - kernel-source-2.6.8 <not-affected> (Does not contain NFS ACLs)
 	- linux-2.6 2.6.14-7

More information about the Secure-testing-commits mailing list