[Secure-testing-commits] r54108 - data/CVE
Markus Koschany
apo at moszumanska.debian.org
Sun Jul 30 20:40:57 UTC 2017
Author: apo
Date: 2017-07-30 20:40:57 +0000 (Sun, 30 Jul 2017)
New Revision: 54108
Modified:
data/CVE/list
Log:
CVE-2017-11627, CVE-2017-11626, CVE-2017-11625, CVE-2017-11624,qpdf: no-dsa in
Wheezy. Looks like this is a DoS via a crafted file only. Could be fixed later
if more serious issues arise though.
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-07-30 20:38:34 UTC (rev 54107)
+++ data/CVE/list 2017-07-30 20:40:57 UTC (rev 54108)
@@ -335,21 +335,25 @@
- qpdf <unfixed> (low)
[stretch] - qpdf <no-dsa> (Minor issue)
[jessie] - qpdf <no-dsa> (Minor issue)
+ [wheezy] - qpdf <no-dsa> (Minor issue)
NOTE: https://github.com/qpdf/qpdf/issues/118
CVE-2017-11626 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
- qpdf <unfixed> (low)
[stretch] - qpdf <no-dsa> (Minor issue)
[jessie] - qpdf <no-dsa> (Minor issue)
+ [wheezy] - qpdf <no-dsa> (Minor issue)
NOTE: https://github.com/qpdf/qpdf/issues/119
CVE-2017-11625 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
- qpdf <unfixed> (low)
[stretch] - qpdf <no-dsa> (Minor issue)
[jessie] - qpdf <no-dsa> (Minor issue)
+ [wheezy] - qpdf <no-dsa> (Minor issue)
NOTE: https://github.com/qpdf/qpdf/issues/120
CVE-2017-11624 (A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, ...)
- qpdf <unfixed> (low)
[stretch] - qpdf <no-dsa> (Minor issue)
[jessie] - qpdf <no-dsa> (Minor issue)
+ [wheezy] - qpdf <no-dsa> (Minor issue)
NOTE: https://github.com/qpdf/qpdf/issues/117
CVE-2017-11623
RESERVED
More information about the Secure-testing-commits
mailing list