[Secure-testing-commits] r17059 - data/CVE
Michael Gilbert
gilbert-guest at alioth.debian.org
Thu Aug 4 01:28:06 UTC 2011
Author: gilbert-guest
Date: 2011-08-04 01:28:06 +0000 (Thu, 04 Aug 2011)
New Revision: 17059
Modified:
data/CVE/list
Log:
xpdf issue
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2011-08-03 21:14:21 UTC (rev 17058)
+++ data/CVE/list 2011-08-04 01:28:06 UTC (rev 17059)
@@ -1,3 +1,7 @@
+CVE-2011-XXXX [xpdf: insecure tempfile usage]
+ - xpdf 3.02-19 (low; bug #635849)
+ [lenny] - xpdf <no-dsa> (zxpdf script is indeed affected, but it's not associated with pdf handling by default, so not a concern for remote abuse)
+ [squeeze] - xpdf <no-dsa> (zxpdf script is indeed affected, but it's not associated with pdf handling by default, so not a concern for remote abuse)
CVE-2011-3007
RESERVED
CVE-2011-3006
More information about the Secure-testing-commits
mailing list