[Secure-testing-commits] r19612 - data/CVE
Moritz Muehlenhoff
jmm at alioth.debian.org
Wed Jun 27 15:21:30 UTC 2012
Author: jmm
Date: 2012-06-27 15:21:29 +0000 (Wed, 27 Jun 2012)
New Revision: 19612
Modified:
data/CVE/list
Log:
two older unimportant poppler issues fixed, thanks to pinotree for the report
new libxslt and libxml2 issues found by chromium devs
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2012-06-27 08:54:07 UTC (rev 19611)
+++ data/CVE/list 2012-06-27 15:21:29 UTC (rev 19612)
@@ -1995,6 +1995,7 @@
RESERVED
CVE-2012-2825
RESERVED
+ - libxslt <unfixed>
CVE-2012-2824
RESERVED
CVE-2012-2823
@@ -2031,6 +2032,8 @@
RESERVED
CVE-2012-2807
RESERVED
+ - libxml2 <unfixed>
+ NOTE: http://git.chromium.org/gitweb/?p=chromium/src.git;a=patch;h=f183580d61c054f7f6bb35cfe29e1b342390fbebcd
CVE-2012-2806
RESERVED
CVE-2012-2805
@@ -37124,14 +37127,14 @@
RESERVED
- kdegraphics 4.0 (unimportant)
- xpdf <unfixed> (unimportant)
- - poppler <unfixed> (unimportant)
+ - poppler 0.16.3-1 (unimportant)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=28172
NOTE: Just a crasher, not treated as a security issue
CVE-2010-0206 [xpdf: Invalid pointer dereference by processing JBIG2 PDF stream objects]
RESERVED
- kdegraphics 4.0 (unimportant)
- xpdf <unfixed> (unimportant)
- - poppler <unfixed> (unimportant)
+ - poppler 0.16.3-1 (unimportant)
NOTE: https://bugzilla.redhat.com/CVE-2010-0206
NOTE: Just a crasher, not treated as a security issue
CVE-2010-0205 (The png_decompress_chunk function in pngrutil.c in libpng 1.0.x before ...)
More information about the Secure-testing-commits
mailing list