[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Add CVE-2018-7440/leptonlib bug reference
Santiago R.R.
santiago at debian.org
Fri Mar 2 19:00:32 UTC 2018
Santiago R.R. pushed to branch master at Debian Security Tracker / security-tracker
Commits:
7364d34c by Santiago Ruano Rincón at 2018-03-02T19:59:31+01:00
Add CVE-2018-7440/leptonlib bug reference
Signed-off-by: Santiago Ruano Rincón <santiagorr at riseup.net>
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -9853,7 +9853,7 @@ CVE-2018-7441 (Leptonica through 1.75.3 uses hardcoded /tmp pathnames, which mig
CVE-2017-18196 (Leptonica 1.74.4 constructs unintended pathnames (containing duplicated ...)
- leptonlib 1.74.4-2 (bug #885704)
CVE-2018-7440 (An issue was discovered in Leptonica through 1.75.3. The ...)
- - leptonlib <unfixed>
+ - leptonlib <unfixed> (bug #891932)
NOTE: https://github.com/DanBloomberg/leptonica/issues/303#issuecomment-366472212
NOTE: https://github.com/DanBloomberg/leptonica/pull/313/commits/49ecb6c2dfd6ed5078c62f4a8eeff03e3beced3b
CVE-2018-3836 [gplotMakeOutput Command Injection Vulnerability]
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7364d34c0a2c39b5ad6059d44aa91234e2044b69
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7364d34c0a2c39b5ad6059d44aa91234e2044b69
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180302/32550b48/attachment.html>
More information about the Secure-testing-commits
mailing list