[Secure-testing-commits] r55141 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Mon Aug 28 06:33:12 UTC 2017 

Author: carnil
Date: 2017-08-28 06:33:11 +0000 (Mon, 28 Aug 2017)
New Revision: 55141

Modified:
   data/CVE/list
Log:
Some qpdf issues fixed in experimental, track fixes to update unstable once moved there

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-08-28 04:46:21 UTC (rev 55140)
+++ data/CVE/list	2017-08-28 06:33:11 UTC (rev 55141)
@@ -5395,24 +5395,28 @@
 	NOTE: Fixed in 7.1.7, 7.0.21, 5.6.31
 	NOTE: Fixed by https://git.php.net/?p=php-src.git;a=commit;h=05255749139b3686c8a6a58ee01131ac0047465e
 CVE-2017-11627 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
+	[experimental] - qpdf 7.0~b1-1
 	- qpdf <unfixed> (low; bug #871320)
 	[stretch] - qpdf <no-dsa> (Minor issue)
 	[jessie] - qpdf <no-dsa> (Minor issue)
 	[wheezy] - qpdf <no-dsa> (Minor issue)
 	NOTE: https://github.com/qpdf/qpdf/issues/118
 CVE-2017-11626 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
+	[experimental] - qpdf 7.0~b1-1
 	- qpdf <unfixed> (low; bug #871320)
 	[stretch] - qpdf <no-dsa> (Minor issue)
 	[jessie] - qpdf <no-dsa> (Minor issue)
 	[wheezy] - qpdf <no-dsa> (Minor issue)
 	NOTE: https://github.com/qpdf/qpdf/issues/119
 CVE-2017-11625 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
+	[experimental] - qpdf 7.0~b1-1
 	- qpdf <unfixed> (low; bug #871320)
 	[stretch] - qpdf <no-dsa> (Minor issue)
 	[jessie] - qpdf <no-dsa> (Minor issue)
 	[wheezy] - qpdf <no-dsa> (Minor issue)
 	NOTE: https://github.com/qpdf/qpdf/issues/120
 CVE-2017-11624 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
+	[experimental] - qpdf 7.0~b1-1
 	- qpdf <unfixed> (low; bug #871320)
 	[stretch] - qpdf <no-dsa> (Minor issue)
 	[jessie] - qpdf <no-dsa> (Minor issue)
@@ -12508,6 +12512,7 @@
 	[wheezy] - linux <not-affected> (Vulnerable code not present)
 	NOTE: https://git.kernel.org/linus/0d0e57697f162da4aa218b5feafe614fb666db07
 CVE-2017-9210 (libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of ...)
+	[experimental] - qpdf 7.0~b1-1
 	- qpdf <unfixed> (low; bug #863390)
 	[stretch] - qpdf <no-dsa> (Minor issue)
 	[jessie] - qpdf <no-dsa> (Minor issue)
@@ -12515,6 +12520,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2017/05/23/10
 	NOTE: https://github.com/qpdf/qpdf/issues/101
 CVE-2017-9209 (libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of ...)
+	[experimental] - qpdf 7.0~b1-1
 	- qpdf <unfixed> (low; bug #863390)
 	[stretch] - qpdf <no-dsa> (Minor issue)
 	[jessie] - qpdf <no-dsa> (Minor issue)
@@ -12522,6 +12528,7 @@
 	NOTE: http://www.openwall.com/lists/oss-security/2017/05/23/10
 	NOTE: https://github.com/qpdf/qpdf/issues/100
 CVE-2017-9208 (libqpdf.a in QPDF 6.0.0 allows remote attackers to cause a denial of ...)
+	[experimental] - qpdf 7.0~b1-1
 	- qpdf <unfixed> (low; bug #863390)
 	[stretch] - qpdf <no-dsa> (Minor issue)
 	[jessie] - qpdf <no-dsa> (Minor issue)

More information about the Secure-testing-commits mailing list