[Git][security-tracker-team/security-tracker][master] Add CVE-2018-19059/poppler

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
77aa7e84 by Salvatore Bonaccorso at 2018-11-07T20:27:13Z
Add CVE-2018-19059/poppler

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -67,7 +67,10 @@ CVE-2018-19061 (DedeCMS 5.7 SP2 has SQL Injection via the dede\co_do.php ids par
 CVE-2018-19060 (An issue was discovered in Poppler 0.71.0. There is a NULL pointer ...)
 	TODO: check
 CVE-2018-19059 (An issue was discovered in Poppler 0.71.0. There is a out-of-bounds ...)
-	TODO: check
+	- poppler <unfixed> (unimportant)
+	NOTE: https://gitlab.freedesktop.org/poppler/poppler/issues/661
+	NOTE: https://gitlab.freedesktop.org/poppler/poppler/commit/77a30e94d96220d7e22dff5b3f0a7f296f01b118
+	NOTE: Issue in pdfdetach cli tool leading to crash
 CVE-2018-19058 (An issue was discovered in Poppler 0.71.0. There is a reachable abort ...)
 	- poppler <unfixed>
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/issues/659



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/77aa7e84d425569c2275bf842c5fcabdc05c2da3

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/77aa7e84d425569c2275bf842c5fcabdc05c2da3
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181107/4727a471/attachment.html>