[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] link upstream commits for CVE-2018-5308/libpodofo

Mattia Rizzolo mattia at debian.org
Sun Jan 28 17:04:05 UTC 2018


Mattia Rizzolo pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8a7a655c by Mattia Rizzolo at 2018-01-28T18:03:46+01:00
link upstream commits for CVE-2018-5308/libpodofo

Signed-off-by: Mattia Rizzolo <mattia at debian.org>

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -2636,6 +2636,8 @@ CVE-2018-5308 (PoDoFo 0.9.5 does not properly validate memcpy arguments in the .
 	[stretch] - libpodofo <no-dsa> (Minor issue)
 	[jessie] - libpodofo <no-dsa> (Minor issue)
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1532390
+	NOTE: upstream commit: https://sourceforge.net/p/podofo/code/1870
+	NOTE: upstream commit: https://sourceforge.net/p/podofo/code/1876
 CVE-2018-5307
 	RESERVED
 CVE-2018-5306



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8a7a655cba1b6c6b7f783a0019e0659ac18a62ae

---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/8a7a655cba1b6c6b7f783a0019e0659ac18a62ae
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180128/4eab342b/attachment.html>


More information about the Secure-testing-commits mailing list