[Git][security-tracker-team/security-tracker][master] 2 commits: mark CVE-2018-19058 of poppler as minor issue
Thorsten Alteholz
alteholz at debian.org
Thu Nov 22 19:08:27 GMT 2018
Thorsten Alteholz pushed to branch master at Debian Security Tracker / security-tracker
Commits:
efd38359 by Thorsten Alteholz at 2018-11-22T19:01:55Z
mark CVE-2018-19058 of poppler as minor issue
- - - - -
5f14653e by Thorsten Alteholz at 2018-11-22T19:01:55Z
no dla for poppler
- - - - -
2 changed files:
- data/CVE/list
- data/dla-needed.txt
Changes:
=====================================
data/CVE/list
=====================================
@@ -1212,6 +1212,7 @@ CVE-2018-19059 (An issue was discovered in Poppler 0.71.0. There is a out-of-bou
CVE-2018-19058 (An issue was discovered in Poppler 0.71.0. There is a reachable abort ...)
- poppler <unfixed> (low; bug #913177)
[stretch] - poppler <ignored> (Minor issue)
+ [jessie] - poppler <ignored> (Minor issue)
NOTE: https://gitlab.freedesktop.org/poppler/poppler/issues/659
NOTE: https://gitlab.freedesktop.org/poppler/poppler/commit/6912e06d9ab19ba28991b5cab3319d61d856bd6d
CVE-2018-19057 (SimpleMDE 1.11.2 has XSS via an onerror attribute of a crafted IMG ...)
=====================================
data/dla-needed.txt
=====================================
@@ -54,8 +54,6 @@ openjpeg2 (Hugo Lefeuvre)
--
otrs2 (Markus Koschany)
--
-poppler (Thorsten Alteholz)
---
qemu (Santiago)
NOTE: 20181121: Call for testers: https://lists.debian.org/debian-lts/2018/11/msg00104.html
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/05da8232dcfd26b411abc95bdf71a8253b1f173d...5f14653ef61683408e90d355c566bf86ce13974c
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/compare/05da8232dcfd26b411abc95bdf71a8253b1f173d...5f14653ef61683408e90d355c566bf86ce13974c
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181122/73d7cf99/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list