[Git][security-tracker-team/security-tracker][master] Add Debian bug reference for CVE-2019-19959/poppler
Salvatore Bonaccorso
carnil at debian.org
Sat Oct 5 10:30:16 BST 2019
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
1e33ed56 by Salvatore Bonaccorso at 2019-10-05T09:29:39Z
Add Debian bug reference for CVE-2019-19959/poppler
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -21233,7 +21233,7 @@ CVE-2019-9961 (A cross-site scripting (XSS) vulnerability in ressource view in c
CVE-2019-9960 (The downloadZip function in application/controllers/admin/export.php i ...)
- limesurvey <itp> (bug #472802)
CVE-2019-9959 (The JPXStream::init function in Poppler 0.78.0 and earlier doesn't che ...)
- - poppler <unfixed>
+ - poppler <unfixed> (bug #941776)
NOTE: https://gitlab.freedesktop.org/poppler/poppler/issues/805
NOTE: Patch: https://gitlab.freedesktop.org/poppler/poppler/commit/68ef84e5968a4249c2162b839ca6d7975048a557 (poppler-0.79.0)
NOTE: Reproducer: https://gitlab.freedesktop.org/poppler/poppler/uploads/3f22837ebd503f87e730b51221b89742/raiter_issue5465.pdf
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1e33ed56c30c6183fe7aa5c5a3b2615ec41c7f9d
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/1e33ed56c30c6183fe7aa5c5a3b2615ec41c7f9d
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191005/671dce67/attachment.html>
More information about the debian-security-tracker-commits
mailing list