[Secure-testing-commits] r58289 - data/CVE

Salvatore Bonaccorso carnil at moszumanska.debian.org
Wed Dec 6 09:23:35 UTC 2017 

Author: carnil
Date: 2017-12-06 09:23:35 +0000 (Wed, 06 Dec 2017)
New Revision: 58289

Modified:
   data/CVE/list
Log:
poppler uploaded to unstable

Modified: data/CVE/list
===================================================================
--- data/CVE/list	2017-12-06 09:10:24 UTC (rev 58288)
+++ data/CVE/list	2017-12-06 09:23:35 UTC (rev 58289)
@@ -7450,8 +7450,7 @@
 	NOTE: Fixed by: https://github.com/SchedMD/slurm/commit/b30e9e9ee2ade6951bfaf28e15ef77325a206971
 CVE-2017-15565 (In Poppler 0.59.0, a NULL Pointer Dereference exists in the ...)
 	{DLA-1177-1}
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (bug #879066)
+	- poppler 0.61.1-2 (bug #879066)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=103016
 	NOTE: Fixed by: https://cgit.freedesktop.org/poppler/poppler/commit/?id=19ebd40547186a8ea6da08c8d8e2a6d6b7e84f5d
 CVE-2017-15564
@@ -9274,22 +9273,19 @@
 	RESERVED
 CVE-2017-14977 (The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler ...)
 	{DLA-1177-1}
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (low; bug #877952)
+	- poppler 0.61.1-2 (low; bug #877952)
 	[stretch] - poppler <no-dsa> (Minor issue)
 	[jessie] - poppler <no-dsa> (Minor issue)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=103045
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=19eedc6fb693a62f305e13079501e3105f869f3c
 CVE-2017-14976 (The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler ...)
 	{DLA-1177-1}
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (low; bug #877954)
+	- poppler 0.61.1-2 (low; bug #877954)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102724
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=da63c35549e8852a410946ab016a3f25ac701bdf
 CVE-2017-14975 (The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler ...)
 	{DLA-1177-1}
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (low; bug #877957)
+	- poppler 0.61.1-2 (low; bug #877957)
 	[stretch] - poppler <no-dsa> (Minor issue)
 	[jessie] - poppler <no-dsa> (Minor issue)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102653
@@ -9452,30 +9448,26 @@
 	NOTE: https://sourceware.org/bugzilla/show_bug.cgi?id=22191
 	NOTE: https://sourceware.org/git/gitweb.cgi?p=binutils-gdb.git;h=a26a013f22a19e2c16729e64f40ef8a7dfcc086e
 CVE-2017-14929 (In Poppler 0.59.0, memory corruption occurs in a call to ...)
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (bug #877222)
+	- poppler 0.61.1-2 (bug #877222)
 	[wheezy] - poppler <ignored> (unreproducible, requires API change which appears to be too intrusive in this case.)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102969
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=2c92c7b6a828c9db8a38f079ea7a3d51c12a481d
 CVE-2017-14928 (In Poppler 0.59.0, a NULL Pointer Dereference exists in ...)
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (bug #877231)
+	- poppler 0.61.1-2 (bug #877231)
 	[stretch] - poppler <no-dsa> (Minor issue)
 	[jessie] - poppler <not-affected> (Problematic code introduced in 0.36)
 	[wheezy] - poppler <not-affected> (Problematic code introduced in 0.36)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102607
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=1316c7a41f4dd7276f404f775ebb5fef2d24ab1c
 CVE-2017-14927 (In Poppler 0.59.0, a NULL Pointer Dereference exists in the ...)
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (bug #877237)
+	- poppler 0.61.1-2 (bug #877237)
 	[stretch] - poppler <not-affected> (Vulnerable code introduced in 0.49)
 	[jessie] - poppler <not-affected> (Vulnerable code introduced in 0.49)
 	[wheezy] - poppler <not-affected> (Vulnerable code introduced in 0.49)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102604
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=6472d8493f7e82cc78b41da20a2bf19fcb4e0a7d
 CVE-2017-14926 (In Poppler 0.59.0, a NULL Pointer Dereference exists in ...)
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (bug #877239)
+	- poppler 0.61.1-2 (bug #877239)
 	[stretch] - poppler <no-dsa> (Minor issue)
 	[jessie] - poppler <not-affected> (Problematic code introduced in 0.36)
 	[wheezy] - poppler <not-affected> (Problematic code introduced in 0.36)
@@ -10346,8 +10338,7 @@
 	NOT-FOR-US: phpMyFAQ
 CVE-2017-14617 (In Poppler 0.59.0, a floating point exception occurs in the ImageStream ...)
 	{DLA-1116-1}
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (bug #876385)
+	- poppler 0.61.1-2 (bug #876385)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102854
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=939465c40902d72e0c05d4f3a27ee67e4a007ed7
 CVE-2015-9232 (The Good for Enterprise application 3.0.0.415 for Android does not use ...)
@@ -10596,8 +10587,7 @@
 CVE-2017-14521
 	RESERVED
 CVE-2017-14520 (In Poppler 0.59.0, a floating point exception occurs in ...)
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (low; bug #876081)
+	- poppler 0.61.1-2 (low; bug #876081)
 	[stretch] - poppler <no-dsa> (Minor issue)
 	[jessie] - poppler <no-dsa> (Minor issue)
 	[wheezy] - poppler <not-affected> (vulnerable code not present)
@@ -10605,13 +10595,11 @@
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=504b3590182175390f474657a372e78fb1508262
 CVE-2017-14519 (In Poppler 0.59.0, memory corruption occurs in a call to ...)
 	{DLA-1116-1}
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (bug #876086)
+	- poppler 0.61.1-2 (bug #876086)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102701
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=aaf5327649e8f7371c9d3270e7813c43ddfd47ee
 CVE-2017-14518 (In Poppler 0.59.0, a floating point exception exists in the ...)
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (low; bug #876082)
+	- poppler 0.61.1-2 (low; bug #876082)
 	[stretch] - poppler <no-dsa> (Minor issue)
 	[jessie] - poppler <no-dsa> (Minor issue)
 	[wheezy] - poppler <not-affected> (vulnerable code not present)
@@ -10619,8 +10607,7 @@
 	NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=80f9819b6233f9f9b5fd44f0e4cad026e5d048c2
 CVE-2017-14517 (In Poppler 0.59.0, a NULL Pointer Dereference exists in the ...)
 	{DLA-1116-1}
-	[experimental] - poppler 0.61.1-1
-	- poppler <unfixed> (low; bug #876079)
+	- poppler 0.61.1-2 (low; bug #876079)
 	[stretch] - poppler <no-dsa> (Minor issue)
 	[jessie] - poppler <no-dsa> (Minor issue)
 	NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102687

More information about the Secure-testing-commits mailing list