[Git][security-tracker-team/security-tracker][master] CVE-2018-16646,poppler: Link to proposed patch

Markus Koschany apo at debian.org
Fri Sep 28 19:30:59 BST 2018


Markus Koschany pushed to branch master at Debian Security Tracker / security-tracker


Commits:
3c2eb604 by Markus Koschany at 2018-09-28T18:30:20Z
CVE-2018-16646,poppler: Link to proposed patch

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2092,8 +2092,9 @@ CVE-2018-16647 (In Artifex MuPDF 1.13.0, the pdf_get_xref_entry function in ...)
 	[jessie] - mupdf <ignored> (Minor issue)
 	NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699686
 CVE-2018-16646 (In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause ...)
-	- poppler <undetermined>
+	- poppler <unfixed>
 	NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1622951
+	NOTE: Proposed fix: https://gitlab.freedesktop.org/poppler/poppler/merge_requests/67
 	TODO: check, reporter did only report to Red Hat so far, few details
 CVE-2018-16645 (There is an excessive memory allocation issue in the functions ...)
 	- imagemagick <unfixed>



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3c2eb60475718d2d6c3b6b0438a204148beecd1e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/3c2eb60475718d2d6c3b6b0438a204148beecd1e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20180928/7f8a032e/attachment.html>


More information about the debian-security-tracker-commits mailing list