[Secure-testing-commits] r49634 - data/CVE
Salvatore Bonaccorso
carnil at moszumanska.debian.org
Mon Mar 13 11:20:36 UTC 2017
Author: carnil
Date: 2017-03-13 11:20:36 +0000 (Mon, 13 Mar 2017)
New Revision: 49634
Modified:
data/CVE/list
Log:
CVEs assigned for libpodofo
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-13 09:49:57 UTC (rev 49633)
+++ data/CVE/list 2017-03-13 11:20:36 UTC (rev 49634)
@@ -6,26 +6,6 @@
RESERVED
CVE-2017-6850
RESERVED
-CVE-2017-6849
- RESERVED
-CVE-2017-6848
- RESERVED
-CVE-2017-6847
- RESERVED
-CVE-2017-6846
- RESERVED
-CVE-2017-6845
- RESERVED
-CVE-2017-6844
- RESERVED
-CVE-2017-6843
- RESERVED
-CVE-2017-6842
- RESERVED
-CVE-2017-6841
- RESERVED
-CVE-2017-6840
- RESERVED
CVE-2017-6839
RESERVED
- audiofile <unfixed>
@@ -1018,43 +998,43 @@
RESERVED
CVE-2017-6427 (A Buffer Overflow was discovered in EvoStream Media Server 1.7.1. A ...)
NOT-FOR-US: EvoStream Media Server
-CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray (PdfColor.cpp)]
+CVE-2017-6849 [NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray (PdfColor.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/10
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcolorgraypdfcolorgray-pdfcolor-cpp
-CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfXObject::PdfXObject (PdfXObject.cpp)]
+CVE-2017-6848 [NULL pointer dereference in PoDoFo::PdfXObject::PdfXObject (PdfXObject.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/9
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfxobjectpdfxobject-pdfxobject-cpp
-CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)]
+CVE-2017-6847 [NULL pointer dereference in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/8
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfvariantdelayedload-pdfvariant-h
-CVE-2017-XXXX [NULL pointer dereference in GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace (graphicsstack.h)]
+CVE-2017-6846 [NULL pointer dereference in GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace (graphicsstack.h)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/7
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcoloroperator-pdfcolor-cpp
-CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfColor::operator= (PdfColor.cpp)]
+CVE-2017-6845 [NULL pointer dereference in PoDoFo::PdfColor::operator= (PdfColor.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/6
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcoloroperator-pdfcolor-cpp
-CVE-2017-XXXX [global buffer overflow in PoDoFo::PdfParser::ReadXRefSubsection (PdfParser.cpp)]
+CVE-2017-6844 [global buffer overflow in PoDoFo::PdfParser::ReadXRefSubsection (PdfParser.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/5
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-global-buffer-overflow-in-podofopdfparserreadxrefsubsection-pdfparser-cpp
-CVE-2017-XXXX [heap-based buffer overflow in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)]
+CVE-2017-6843 [heap-based buffer overflow in PoDoFo::PdfVariant::DelayedLoad (PdfVariant.h)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/4
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-heap-based-buffer-overflow-in-podofopdfvariantdelayedload-pdfvariant-h
-CVE-2017-XXXX [NULL pointer dereference in ColorChanger::GetColorFromStack (colorchanger.cpp)]
+CVE-2017-6842 [NULL pointer dereference in ColorChanger::GetColorFromStack (colorchanger.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/3
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-colorchangergetcolorfromstack-colorchanger-cpp
-CVE-2017-XXXX [NULL pointer dereference in GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h)]
+CVE-2017-6841 [NULL pointer dereference in GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/2
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-graphicsstacktgraphicsstackelementtgraphicsstackelement-graphicsstack-h
-CVE-2017-XXXX [invalid memory read in ColorChanger::GetColorFromStack (colorchanger.cpp)]
+CVE-2017-6840 [invalid memory read in ColorChanger::GetColorFromStack (colorchanger.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/1
NOTE: https://blogs.gentoo.org/ago/2017/03/02/podofo-invalid-memory-read-in-colorchangergetcolorfromstack-colorchanger-cpp
More information about the Secure-testing-commits
mailing list