[Git][security-tracker-team/security-tracker][master] new podofo issues
Moritz Muehlenhoff
jmm at debian.org
Fri Jun 29 22:22:17 BST 2018
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
de20553e by Moritz Muehlenhoff at 2018-06-29T23:21:51+02:00
new podofo issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -83,9 +83,11 @@ CVE-2018-12985
CVE-2018-12984 (Hycus CMS 1.0.4 allows Authentication Bypass via "'=' 'OR'" ...)
NOT-FOR-US: Hycus CMS
CVE-2018-12983 (A stack-based buffer over-read in the ...)
- TODO: check
+ - libpodofo <unfixed> (low)
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1595693
CVE-2018-12982 (Invalid memory read in the PoDoFo::PdfVariant::DelayedLoad() function ...)
- TODO: check
+ - libpodofo <unfixed> (low)
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1595689
CVE-2018-12981
RESERVED
CVE-2018-12980
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/de20553e3b0ee367fc4186d40da40c455f2aa900
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/de20553e3b0ee367fc4186d40da40c455f2aa900
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180629/7afa9cac/attachment.html>
More information about the debian-security-tracker-commits
mailing list