[Secure-testing-commits] r56337 - data/CVE
Moritz Muehlenhoff
jmm at moszumanska.debian.org
Mon Oct 2 10:05:21 UTC 2017
Author: jmm
Date: 2017-10-02 10:05:21 +0000 (Mon, 02 Oct 2017)
New Revision: 56337
Modified:
data/CVE/list
Log:
new poppler issues
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-10-02 10:02:40 UTC (rev 56336)
+++ data/CVE/list 2017-10-02 10:05:21 UTC (rev 56337)
@@ -23,11 +23,15 @@
CVE-2017-14978
RESERVED
CVE-2017-14977 (The FoFiTrueType::getCFFBlock function in FoFiTrueType.cc in Poppler ...)
- TODO: check
+ - poppler <unfixed> (low)
+ NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=103045
CVE-2017-14976 (The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler ...)
- TODO: check
+ - poppler <unfixed> (low)
+ NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102724
+ NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=da63c35549e8852a410946ab016a3f25ac701bdf
CVE-2017-14975 (The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler ...)
- TODO: check
+ - poppler <unfixed> (low)
+ NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=102653
CVE-2017-14974 (The *_get_synthetic_symtab functions in the Binary File Descriptor ...)
TODO: check
CVE-2017-14973
More information about the Secure-testing-commits
mailing list