[Secure-testing-commits] r49380 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Fri Mar 3 05:50:54 UTC 2017
Author: carnil
Date: 2017-03-03 05:50:54 +0000 (Fri, 03 Mar 2017)
New Revision: 49380
Modified:
data/CVE/list
Log:
Complete note references with oss-security for better crossreference in case/when CVEs are assigned to better identify the entry
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-03 05:05:59 UTC (rev 49379)
+++ data/CVE/list 2017-03-03 05:50:54 UTC (rev 49380)
@@ -32,33 +32,43 @@
RESERVED
CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray (PdfColor.cpp)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/10
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcolorgraypdfcolorgray-pdfcolor-cpp
CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfXObject::PdfXObject (PdfXObject.cpp)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/9
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfxobjectpdfxobject-pdfxobject-cpp
CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/8
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfvariantdelayedload-pdfvariant-h
CVE-2017-XXXX [NULL pointer dereference in GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace (graphicsstack.h)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/7
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcoloroperator-pdfcolor-cpp
CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfColor::operator= (PdfColor.cpp)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/6
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcoloroperator-pdfcolor-cpp
CVE-2017-XXXX [global buffer overflow in PoDoFo::PdfParser::ReadXRefSubsection (PdfParser.cpp)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/5
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-global-buffer-overflow-in-podofopdfparserreadxrefsubsection-pdfparser-cpp
CVE-2017-XXXX [heap-based buffer overflow in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/4
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-heap-based-buffer-overflow-in-podofopdfvariantdelayedload-pdfvariant-h
CVE-2017-XXXX [NULL pointer dereference in ColorChanger::GetColorFromStack (colorchanger.cpp)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/3
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-colorchangergetcolorfromstack-colorchanger-cpp
CVE-2017-XXXX [NULL pointer dereference in GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/2
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-graphicsstacktgraphicsstackelementtgraphicsstackelement-graphicsstack-h
CVE-2017-XXXX [invalid memory read in ColorChanger::GetColorFromStack (colorchanger.cpp)]
- libpodofo <unfixed> (bug #856592)
+ NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/1
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-invalid-memory-read-in-colorchangergetcolorfromstack-colorchanger-cpp
CVE-2017-6426
RESERVED
More information about the Secure-testing-commits
mailing list