[Secure-testing-commits] r58289 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Wed Dec 6 09:23:35 UTC 2017
Author: carnil
Date: 2017-12-06 09:23:35 +0000 (Wed, 06 Dec 2017)
New Revision: 58289
Modified:
data/CVE/list
Log:
poppler uploaded to unstable
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-12-06 09:10:24 UTC (rev 58288)
+++ data/CVE/list 2017-12-06 09:23:35 UTC (rev 58289)
@@ -7450,8 +7450,7 @@
NOTE: Fixed by: https://github.com/SchedMD/slurm/commit/b30e9e9ee2ade6951bfaf28e15ef77325a206971
CVE-2017-15565 (In Poppler 0.59.0, a NULL Pointer Dereference exists in the ...)
{DLA-1177-1}
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (bug #879066)
+ - poppler 0.61.1-2 (bug #879066)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=103016
NOTE: Fixed by: https://cgit.freedesktop.org/poppler/poppler/commit/?id=19ebd40547186a8ea6da08c8d8e2a6d6b7e84f5d
CVE-2017-15564
@@ -9274,22 +9273,19 @@
RESERVED
CVE-2017-14977 (The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler ...)
{DLA-1177-1}
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (low; bug #877952)
+ - poppler 0.61.1-2 (low; bug #877952)
[stretch] - poppler <no-dsa> (Minor issue)
[jessie] - poppler <no-dsa> (Minor issue)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=103045
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=19eedc6fb693a62f305e13079501e3105f869f3c
CVE-2017-14976 (The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler ...)
{DLA-1177-1}
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (low; bug #877954)
+ - poppler 0.61.1-2 (low; bug #877954)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102724
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=da63c35549e8852a410946ab016a3f25ac701bdf
CVE-2017-14975 (The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler ...)
{DLA-1177-1}
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (low; bug #877957)
+ - poppler 0.61.1-2 (low; bug #877957)
[stretch] - poppler <no-dsa> (Minor issue)
[jessie] - poppler <no-dsa> (Minor issue)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102653
@@ -9452,30 +9448,26 @@
NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=22191
NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=a26a013f22a19e2c16729e64f40ef8a7dfcc086e
CVE-2017-14929 (In Poppler 0.59.0, memory corruption occurs in a call to ...)
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (bug #877222)
+ - poppler 0.61.1-2 (bug #877222)
[wheezy] - poppler <ignored> (unreproducible, requires API change which appears to be too intrusive in this case.)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102969
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=2c92c7b6a828c9db8a38f079ea7a3d51c12a481d
CVE-2017-14928 (In Poppler 0.59.0, a NULL Pointer Dereference exists in ...)
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (bug #877231)
+ - poppler 0.61.1-2 (bug #877231)
[stretch] - poppler <no-dsa> (Minor issue)
[jessie] - poppler <not-affected> (Problematic code introduced in 0.36)
[wheezy] - poppler <not-affected> (Problematic code introduced in 0.36)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102607
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=1316c7a41f4dd7276f404f775ebb5fef2d24ab1c
CVE-2017-14927 (In Poppler 0.59.0, a NULL Pointer Dereference exists in the ...)
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (bug #877237)
+ - poppler 0.61.1-2 (bug #877237)
[stretch] - poppler <not-affected> (Vulnerable code introduced in 0.49)
[jessie] - poppler <not-affected> (Vulnerable code introduced in 0.49)
[wheezy] - poppler <not-affected> (Vulnerable code introduced in 0.49)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102604
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=6472d8493f7e82cc78b41da20a2bf19fcb4e0a7d
CVE-2017-14926 (In Poppler 0.59.0, a NULL Pointer Dereference exists in ...)
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (bug #877239)
+ - poppler 0.61.1-2 (bug #877239)
[stretch] - poppler <no-dsa> (Minor issue)
[jessie] - poppler <not-affected> (Problematic code introduced in 0.36)
[wheezy] - poppler <not-affected> (Problematic code introduced in 0.36)
@@ -10346,8 +10338,7 @@
NOT-FOR-US: phpMyFAQ
CVE-2017-14617 (In Poppler 0.59.0, a floating point exception occurs in the ImageStream ...)
{DLA-1116-1}
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (bug #876385)
+ - poppler 0.61.1-2 (bug #876385)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102854
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=939465c40902d72e0c05d4f3a27ee67e4a007ed7
CVE-2015-9232 (The Good for Enterprise application 3.0.0.415 for Android does not use ...)
@@ -10596,8 +10587,7 @@
CVE-2017-14521
RESERVED
CVE-2017-14520 (In Poppler 0.59.0, a floating point exception occurs in ...)
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (low; bug #876081)
+ - poppler 0.61.1-2 (low; bug #876081)
[stretch] - poppler <no-dsa> (Minor issue)
[jessie] - poppler <no-dsa> (Minor issue)
[wheezy] - poppler <not-affected> (vulnerable code not present)
@@ -10605,13 +10595,11 @@
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=504b3590182175390f474657a372e78fb1508262
CVE-2017-14519 (In Poppler 0.59.0, memory corruption occurs in a call to ...)
{DLA-1116-1}
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (bug #876086)
+ - poppler 0.61.1-2 (bug #876086)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102701
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=aaf5327649e8f7371c9d3270e7813c43ddfd47ee
CVE-2017-14518 (In Poppler 0.59.0, a floating point exception exists in the ...)
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (low; bug #876082)
+ - poppler 0.61.1-2 (low; bug #876082)
[stretch] - poppler <no-dsa> (Minor issue)
[jessie] - poppler <no-dsa> (Minor issue)
[wheezy] - poppler <not-affected> (vulnerable code not present)
@@ -10619,8 +10607,7 @@
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=80f9819b6233f9f9b5fd44f0e4cad026e5d048c2
CVE-2017-14517 (In Poppler 0.59.0, a NULL Pointer Dereference exists in the ...)
{DLA-1116-1}
- [experimental] - poppler 0.61.1-1
- - poppler <unfixed> (low; bug #876079)
+ - poppler 0.61.1-2 (low; bug #876079)
[stretch] - poppler <no-dsa> (Minor issue)
[jessie] - poppler <no-dsa> (Minor issue)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102687
More information about the Secure-testing-commits
mailing list