[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Record fixed version for mupdf in unstable
Salvatore Bonaccorso
carnil at debian.org
Wed Mar 14 14:13:42 UTC 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
844030ca by Salvatore Bonaccorso at 2018-03-14T15:13:29+01:00
Record fixed version for mupdf in unstable
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -4151,7 +4151,7 @@ CVE-2018-1000052 (fmtlib version prior to version 4.1.0 (before commit ...)
NOTE: https://github.com/fmtlib/fmt/issues/642
NOTE: https://github.com/fmtlib/fmt/commit/8cf30aa2be256eba07bb1cefb998c52326e846e7
CVE-2018-1000051 (Artifex Mupdf version 1.12.0 contains a Use After Free vulnerability ...)
- - mupdf <unfixed> (bug #891245)
+ - mupdf 1.12.0+ds1-1 (bug #891245)
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698825
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698873
NOTE: Fixed by: http://www.ghostscript.com/cgi-bin/findgit.cgi?321ba1de287016b0036bf4a56ce774ad11763384
@@ -4526,7 +4526,7 @@ CVE-2018-6546
CVE-2018-6545 (Ipswitch MoveIt v8.1 is vulnerable to a Stored Cross-Site Scripting ...)
NOT-FOR-US: Ipswitch MoveIt
CVE-2018-6544 (pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 could ...)
- - mupdf <unfixed> (bug #891245)
+ - mupdf 1.12.0+ds1-1 (bug #891245)
NOTE: http://git.ghostscript.com/?p=mupdf.git;h=26527eef77b3e51c2258c8e40845bfbc015e405d
NOTE: http://git.ghostscript.com/?p=mupdf.git;h=b03def134988da8c800adac1a38a41a1f09a1d89
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698830
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/844030ca7f948a5b8a8f1bdd14c1561cda05e4e3
---
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/844030ca7f948a5b8a8f1bdd14c1561cda05e4e3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.alioth.debian.org/pipermail/secure-testing-commits/attachments/20180314/c96a13e7/attachment.html>
More information about the Secure-testing-commits
mailing list