[Git][security-tracker-team/security-tracker][master] mark CVE-2018-12982/libpodofo and CVE-2018-12983/libpodofo as no-dsa also for jessie
Mattia Rizzolo
mattia at debian.org
Mon Jul 9 11:23:11 BST 2018
Mattia Rizzolo pushed to branch master at Debian Security Tracker / security-tracker
Commits:
4a0e9d53 by Mattia Rizzolo at 2018-07-09T12:22:57+02:00
mark CVE-2018-12982/libpodofo and CVE-2018-12983/libpodofo as no-dsa also for jessie
Signed-off-by: Mattia Rizzolo <mattia at debian.org>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -1668,11 +1668,13 @@ CVE-2018-12984 (Hycus CMS 1.0.4 allows Authentication Bypass via "'=' 'OR'&
CVE-2018-12983 (A stack-based buffer over-read in the ...)
- libpodofo <unfixed> (low)
[stretch] - libpodofo <no-dsa> (Minor issue)
+ [jessie] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1595693
NOTE: https://sourceforge.net/p/podofo/tickets/23
CVE-2018-12982 (Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad() function ...)
- libpodofo <unfixed> (low)
[stretch] - libpodofo <no-dsa> (Minor issue)
+ [jessie] - libpodofo <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1595689
NOTE: https://sourceforge.net/p/podofo/tickets/22
CVE-2018-12981
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4a0e9d53a25e19c6896064c2d902b0a3de611a16
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/4a0e9d53a25e19c6896064c2d902b0a3de611a16
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180709/9545c780/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list