[Secure-testing-commits] r23267 - data/CVE
Salvatore Bonaccorso
carnil at alioth.debian.org
Fri Aug 9 11:48:25 UTC 2013
Author: carnil
Date: 2013-08-09 11:48:25 +0000 (Fri, 09 Aug 2013)
New Revision: 23267
Modified:
data/CVE/list
Log:
add fixed version for CVE-2012-2142/poppler
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2013-08-09 09:56:31 UTC (rev 23266)
+++ data/CVE/list 2013-08-09 11:48:25 UTC (rev 23267)
@@ -24677,13 +24677,12 @@
- postgresql-8.4 8.4.12-1
- php5 5.3.3-1
NOTE: Uses the unaffected system libraries since 5.3.3
-CVE-2012-2142
+CVE-2012-2142 [Insufficient sanitization of escape sequences in the error message]
RESERVED
- xpdf <unfixed>
- - poppler <unfixed>
+ - poppler 0.18.4-7
TODO: check
NOTE: poppler upstream patch http://cgit.freedesktop.org/poppler/poppler/commit/?id=71bad47ed6a36d825b0d08992c8db56845c71e40
- NOTE: http://openwall.com/lists/oss-security/2013/08/09/5
CVE-2012-2141 (Array index error in the handle_nsExtendOutput2Table function in ...)
- net-snmp 5.4.3~dfsg-2.5 (low; bug #672492)
[squeeze] - net-snmp <no-dsa> (Minor issue)
More information about the Secure-testing-commits
mailing list