[Secure-testing-commits] r12226 - data/CVE

Michael Gilbert gilbert-guest at alioth.debian.org
Mon Jun 29 17:50:30 UTC 2009 

Author: gilbert-guest
Date: 2009-06-29 17:50:29 +0000 (Mon, 29 Jun 2009)
New Revision: 12226

Modified:
   data/CVE/list
Log:
lenny's point release of xpdf is now in squeeze (and one more squeeze kernel update)


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2009-06-29 17:42:52 UTC (rev 12225)
+++ data/CVE/list	2009-06-29 17:50:29 UTC (rev 12226)
@@ -3143,6 +3143,7 @@
 	- poppler 0.10.6-1 (medium; bug #524806)
 	[lenny] - poppler 0.8.7-2
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics 4.0-1 (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-1182 (Multiple buffer overflows in the JBIG2 MMR decoder in Xpdf 3.02pl2 and ...)
@@ -3150,6 +3151,7 @@
 	- poppler 0.10.6-1 (medium; bug #524806)
 	[lenny] - poppler 0.8.7-2
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics 4.0-1 (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-1181 (The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, ...)
@@ -3157,6 +3159,7 @@
 	- poppler 0.10.6-1 (medium; bug #524806)
 	[lenny] - poppler 0.8.7-2
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics 4.0-1 (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-1180 (The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, ...)
@@ -3164,6 +3167,7 @@
 	- poppler 0.10.6-1 (medium; bug #524806)
 	[lenny] - poppler 0.8.7-2
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics 4.0-1 (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-1179 (Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, ...)
@@ -3171,6 +3175,7 @@
 	- poppler 0.10.6-1 (medium; bug #524806)
 	[lenny] - poppler 0.8.7-2
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics 4.0-1 (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-1178 (Unspecified vulnerability in the server in IBM Tivoli Storage Manager ...)
@@ -4456,6 +4461,7 @@
 	- poppler 0.10.6-1 (medium; bug #524806)
 	[lenny] - poppler 0.8.7-2
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics 4.0  (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-0799 (The JBIG2 decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, ...)
@@ -4463,6 +4469,7 @@
 	- poppler 0.10.6-1 (medium; bug #524806)
 	[lenny] - poppler 0.8.7-2
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics 4.0 (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-0798 (ACPI Event Daemon (acpid) before 1.0.10 allows remote attackers to ...)
@@ -6980,6 +6987,7 @@
 CVE-2009-0195 (Heap-based buffer overflow in Xpdf 3.02pl2 and earlier, CUPS 1.3.9, ...)
 	{DSA-1790-1}
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	TODO: check poppler cups kdegraphics swftools
 CVE-2009-0194 (The domain-locking implementation in the ...)
 	NOT-FOR-US: Garmin Communicator Plug-In
@@ -7069,12 +7077,13 @@
 	- poppler <unfixed> (medium; bug #524806)
 	- cups <not-affected> (Uses poppler's pdftops)
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics <unfixed> (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-0165 (Integer overflow in the JBIG2 decoder in Xpdf 3.02pl2 and earlier, as ...)
 	{DSA-1793-1 DSA-1790-1}
 	- xpdf <unfixed> (low; bug #524809)
-	NOTE: probably only affects Mac OS X
+	[squeeze] - xpdf 3.02-1.4+lenny1
 CVE-2009-0164 (The web interface for CUPS before 1.3.10 does not validate the HTTP ...)
 	- cups 1.3.10-1 (low)
 	[lenny] - cups <no-dsa> (Minor issue, needs several prerequirements for attack)
@@ -7122,6 +7131,7 @@
 	- poppler <unfixed> (medium; bug #524806)
 	- cups <not-affected> (Uses poppler's pdftops)
 	- xpdf <unfixed> (medium; bug #524809)
+	[squeeze] - xpdf 3.02-1.4+lenny1
 	- kdegraphics <unfixed> (medium; bug #524810)
 	- swftools <unfixed> (medium; bug #527449)
 CVE-2009-0146 (Multiple buffer overflows in the JBIG2 decoder in Xpdf 3.02pl2 and ...)
@@ -8112,6 +8122,7 @@
 CVE-2009-0028 (The clone system call in the Linux kernel 2.6.28 and earlier allows ...)
 	{DSA-1800-1 DSA-1794-1 DSA-1787-1}
 	- linux-2.6 2.6.29-1
+	[squeeze] - linux-2.6 2.6.26-17
 	- linux-2.6.24 <removed>
 CVE-2009-0027 (The request handler in JBossWS in JBoss Enterprise Application ...)
 	- jbossas4 <unfixed>

More information about the Secure-testing-commits mailing list