[Secure-testing-commits] r50382 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Apr 5 18:40:37 UTC 2017


Author: carnil
Date: 2017-04-05 18:40:37 +0000 (Wed, 05 Apr 2017)
New Revision: 50382

Modified:
   data/CVE/list
Log:
Update CVE-2016-10218/ghostscript

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-04-05 18:27:15 UTC (rev 50381)
+++ data/CVE/list	2017-04-05 18:40:37 UTC (rev 50382)
@@ -4262,10 +4262,10 @@
 	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697453
 	TODO: check
 CVE-2016-10218 (The pdf14_pop_transparency_group function in base/gdevp14.c in the PDF ...)
-	- ghostscript <undetermined>
-	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=d621292fb2c8157d9899dcd83fd04dd250e30fe4
+	- ghostscript <not-affected> (Vulnerable code introduced later)
+	NOTE: Fixed by: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=d621292fb2c8157d9899dcd83fd04dd250e30fe4
+	NOTE: Introduced by: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=47294ff5b168d25bfc7db64f51572d64b8ebde91
 	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=697444
-	TODO: check
 CVE-2016-10217 (The pdf14_open function in base/gdevp14.c in Artifex Software, Inc. ...)
 	- ghostscript <unfixed> (bug #859662)
 	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=90fd0c7ca3efc1ddff64a86f4104b13b3ac969eb




More information about the Secure-testing-commits mailing list