[Git][security-tracker-team/security-tracker][master] Remove no-dsa tagged entries which got an update in DLA-1562-1
Salvatore Bonaccorso
carnil at debian.org
Wed Oct 31 21:44:49 GMT 2018
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
bd4819f9 by Salvatore Bonaccorso at 2018-10-31T21:44:16Z
Remove no-dsa tagged entries which got an update in DLA-1562-1
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -12220,7 +12220,6 @@ CVE-2018-13989 (Grundig Smart Inter at ctive TV 3.0 devices allow CSRF attacks via
CVE-2018-13988 (Poppler through 0.62 contains an out of bounds read vulnerability due ...)
- poppler 0.69.0-2 (low; bug #904922)
[stretch] - poppler <no-dsa> (Minor issue)
- [jessie] - poppler <no-dsa> (Minor issue)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1602838
NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=004e3c10df0abda214f0c293f9e269fdd979c5ee (poppler-0.67.0)
CVE-2018-13987
@@ -20074,7 +20073,6 @@ CVE-2017-18267 (The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppl
[experimental] - poppler 0.65.0-1
- poppler 0.69.0-2 (bug #898357)
[stretch] - poppler <no-dsa> (Minor issue)
- [jessie] - poppler <no-dsa> (Minor issue)
[wheezy] - poppler <ignored> (Minor issue)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=104942
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=103238
@@ -20786,7 +20784,6 @@ CVE-2018-10769 (The transferProxy and approveProxy functions of a smart contract
NOT-FOR-US: smart contract
CVE-2018-10768 (There is a NULL pointer dereference in the AnnotPath::getCoordsLength ...)
- poppler 0.38.0-2
- [jessie] - poppler <no-dsa> (Minor issue)
[wheezy] - poppler <not-affected> (Vulnerable code is not present)
NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=106408
NOTE: Fixed by: https://cgit.freedesktop.org/poppler/poppler/commit/?id=942adfc25e7a00ac3cf032ced2d8949e99099f70 (poppler-0.37)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bd4819f9afd948e1e3b5822f3ca4398a12d91d06
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bd4819f9afd948e1e3b5822f3ca4398a12d91d06
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20181031/43a75305/attachment.html>
More information about the debian-security-tracker-commits
mailing list