[Secure-testing-commits] r7008 - data/CVE

keescook-guest at alioth.debian.org keescook-guest at alioth.debian.org
Thu Oct 18 19:03:57 UTC 2007


Author: keescook-guest
Date: 2007-10-18 19:03:56 +0000 (Thu, 18 Oct 2007)
New Revision: 7008

Modified:
   data/CVE/list
Log:
reopen CVE-2007-2721 for ghostscript

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2007-10-18 18:55:18 UTC (rev 7007)
+++ data/CVE/list	2007-10-18 19:03:56 UTC (rev 7008)
@@ -6801,6 +6801,8 @@
 	NOT-FOR-US: NewzCrawler
 CVE-2007-2721 (The jpc_qcx_getcompparms function in jpc/jpc_cs.c for the JasPer ...)
 	- jasper 1.900.1-3 (medium; bug #413033)
+	- ghostscript <unfixed> (medium)
+	NOTE: see http://ghostscript.com/pipermail/gs-cvs/2007-October/007877.html
 CVE-2007-2720 (Group-Office before 2.16-13 does not properly validate user IDs, which ...)
 	NOT-FOR-US: Group-Office
 CVE-2007-2719 (Session fixation vulnerability in HP Systems Insight Manager (SIM) 4.2 ...)




More information about the Secure-testing-commits mailing list