[Secure-testing-commits] r18201 - data/CVE

Yves-Alexis Perez corsac at alioth.debian.org
Wed Jan 18 09:50:49 UTC 2012 

Author: corsac
Date: 2012-01-18 09:50:49 +0000 (Wed, 18 Jan 2012)
New Revision: 18201

Modified:
   data/CVE/list
Log:
update t1lib fixed versions in sid


Modified: data/CVE/list
===================================================================
--- data/CVE/list	2012-01-18 09:13:54 UTC (rev 18200)
+++ data/CVE/list	2012-01-18 09:50:49 UTC (rev 18201)
@@ -11493,7 +11493,7 @@
 	TODO: check
 CVE-2011-1554 (Off-by-one error in t1lib 5.1.2 and earlier, as used in Xpdf before ...)
 	{DSA-2388-2 DSA-2388-1}
-	- t1lib 5.1.2-3.3
+	- t1lib 5.1.2-3.5
 	[lenny] - t1lib 5.1.2-3+lenny1
 	[squeeze] - t1lib 5.1.2-3+squeeze1
 	NOTE: see https://bugzilla.redhat.com/show_bug.cgi?id=692909#c23
@@ -11501,7 +11501,7 @@
 	- poppler <not-affected> (never used t1lib)
 CVE-2011-1553 (Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in ...)
 	{DSA-2388-2 DSA-2388-1}
-	- t1lib 5.1.2-3.3
+	- t1lib 5.1.2-3.5
 	[lenny] - t1lib 5.1.2-3+lenny1
 	[squeeze] - t1lib 5.1.2-3+squeeze1
 	NOTE: see https://bugzilla.redhat.com/show_bug.cgi?id=692909#c23
@@ -11509,7 +11509,7 @@
 	- poppler <not-affected> (never used t1lib)
 CVE-2011-1552 (t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6 and other ...)
 	{DSA-2388-2 DSA-2388-1}
-	- t1lib 5.1.2-3.3
+	- t1lib 5.1.2-3.5
 	[lenny] - t1lib 5.1.2-3+lenny1
 	[squeeze] - t1lib 5.1.2-3+squeeze1
 	NOTE: see https://bugzilla.redhat.com/show_bug.cgi?id=692909#c23
@@ -14889,7 +14889,7 @@
 	[squeeze] - vftool 2.0alpha-4+squeeze1
 	[lenny] - vftool 2.0alpha-3+lenny1
 	NOTE: https://bugzilla.gnome.org/show_bug.cgi?id=640923
-	- t1lib 5.1.2-3.4
+	- t1lib 5.1.2-3.5
 	[lenny] - t1lib 5.1.2-3+lenny1
 	[squeeze] - t1lib 5.1.2-3+squeeze1
 	NOTE: vuln source file is lib/t1lib/parseAFM.c, which differs slightly from evince's afmparse.c in the affected areas but it is indeed affected
@@ -21912,7 +21912,7 @@
 	{DSA-2388-2 DSA-2388-1 DSA-2357-1}
 	- evince 3.0.2-1 (bug #609534)
 	[squeeze] - evince 2.30.3-2+squeeze1
-	- t1lib 5.1.2-3.4
+	- t1lib 5.1.2-3.5
 	[lenny] - t1lib 5.1.2-3+lenny1
 	[squeeze] - t1lib 5.1.2-3+squeeze1
 CVE-2010-2641 (Array index error in the VF font parser in the dvi-backend component ...)

More information about the Secure-testing-commits mailing list