[Git][security-tracker-team/security-tracker][master] Add four new ghostscript issues

Salvatore Bonaccorso carnil at debian.org
Wed Aug 28 14:36:12 BST 2019 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7b63bec2 by Salvatore Bonaccorso at 2019-08-28T13:35:31Z
Add four new ghostscript issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2617,6 +2617,10 @@ CVE-2019-14818
 	RESERVED
 CVE-2019-14817
 	RESERVED
+	- ghostscript <unfixed>
+	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=cd1b1cacadac2479e291efe611979bdc1b3bdb19
+	NOTE: https://www.openwall.com/lists/oss-security/2019/08/28/2
+	NOTE: For recent versions the issue is mitigated starting from http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=7ecbfda92b4c8dbf6f6c2bf8fc82020a29219eff
 CVE-2019-14816
 	RESERVED
 	- linux <unfixed>
@@ -2628,10 +2632,22 @@ CVE-2019-14814
 	- linux <unfixed>
 CVE-2019-14813
 	RESERVED
+	- ghostscript <unfixed>
+	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33
+	NOTE: https://www.openwall.com/lists/oss-security/2019/08/28/2
+	NOTE: For recent versions the issue is mitigated starting from http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=7ecbfda92b4c8dbf6f6c2bf8fc82020a29219eff
 CVE-2019-14812
 	RESERVED
+	- ghostscript <unfixed>
+	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33
+	NOTE: https://www.openwall.com/lists/oss-security/2019/08/28/2
+	NOTE: For recent versions the issue is mitigated starting from http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=7ecbfda92b4c8dbf6f6c2bf8fc82020a29219eff
 CVE-2019-14811
 	RESERVED
+	- ghostscript <unfixed>
+	NOTE: http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=885444fcbe10dc42787ecb76686c8ee4dd33bf33
+	NOTE: https://www.openwall.com/lists/oss-security/2019/08/28/2
+	NOTE: For recent versions the issue is mitigated starting from http://git.ghostscript.com/?p=ghostpdl.git;a=commitdiff;h=7ecbfda92b4c8dbf6f6c2bf8fc82020a29219eff
 CVE-2019-14810
 	RESERVED
 CVE-2019-14809 (net/url in Go before 1.11.13 and 1.12.x before 1.12.8 mishandles malfo ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7b63bec2867107d4146838bb3ca1e28e857d9892

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7b63bec2867107d4146838bb3ca1e28e857d9892
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190828/ed3bcbda/attachment.html>

More information about the debian-security-tracker-commits mailing list