[Git][security-tracker-team/security-tracker][master] Add CVE-2018-15908/ghostscript
Salvatore Bonaccorso
carnil at debian.org
Mon Aug 27 21:18:49 BST 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
8ee59850 by Salvatore Bonaccorso at 2018-08-27T20:18:07Z
Add CVE-2018-15908/ghostscript
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -8,7 +8,9 @@ CVE-2018-15909 (In Artifex Ghostscript 9.23 before 2018-08-24, a type confusion
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=e01e77a36cbb2e0277bc3a63852244bec41be0f6
NOTE: https://www.kb.cert.org/vuls/id/332928
CVE-2018-15908 (In Artifex Ghostscript 9.23 before 2018-08-23, attackers are able to ...)
- TODO: check
+ - ghostscript <unfixed> (bug #907332)
+ NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=0d3901189f245232f0161addf215d7268c4d05a3
+ NOTE: https://www.kb.cert.org/vuls/id/332928
CVE-2018-15907
RESERVED
CVE-2018-15906
@@ -91,7 +93,6 @@ CVE-2018-XXXX [Multiple -dSAFER sandbox bypass vulnerabilities]
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=c432131c
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=0edd3d6c
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=a054156d
- NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=0d390118
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=b326a716
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=78911a01
NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=5516c614
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8ee5985083f995b5acdd80d6ae18f34a23d94139
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8ee5985083f995b5acdd80d6ae18f34a23d94139
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180827/d473c23c/attachment.html>
More information about the debian-security-tracker-commits
mailing list