[Git][security-tracker-team/security-tracker][master] binutils fixed

Moritz Muehlenhoff jmm at debian.org
Tue Oct 15 12:37:49 BST 2019 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
fa7966b2 by Moritz Muehlenhoff at 2019-10-15T11:37:24Z
binutils fixed
mark two poppler issues as ignored

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -8665,8 +8665,8 @@ CVE-2019-14495 (webadmin.c in 3proxy before 0.8.13 has an out-of-bounds write in
 CVE-2019-14494 (An issue was discovered in Poppler through 0.78.0. There is a divide-b ...)
 	[experimental] - poppler 0.81.0-1
 	- poppler <unfixed> (bug #933812)
-	[buster] - poppler <no-dsa> (Minor issue)
-	[stretch] - poppler <no-dsa> (Minor issue)
+	[buster] - poppler <ignored (Minor issue)
+	[stretch] - poppler <ignored> (Minor issue)
 	[jessie] - poppler <no-dsa> (Minor issue)
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/issues/802
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/merge_requests/317
@@ -9998,7 +9998,7 @@ CVE-2019-14252 (An issue was discovered in the secure portal in Publisure 2.1.2.
 CVE-2019-14251
 	RESERVED
 CVE-2019-14250 (An issue was discovered in GNU libiberty, as distributed in GNU Binuti ...)
-	- binutils <unfixed> (unimportant)
+	- binutils 2.33-1 (unimportant)
 	NOTE: https://gcc.gnu.org/bugzilla/show_bug.cgi?id=90924
 	NOTE: https://gcc.gnu.org/ml/gcc-patches/2019-07/msg01003.html
 	NOTE: binutils not covered by security support
@@ -24540,8 +24540,8 @@ CVE-2019-9544 (An issue was discovered in Bento4 1.5.1-628. An out of bounds wri
 	NOT-FOR-US: Bento4
 CVE-2019-9543 (An issue was discovered in Poppler 0.74.0. A recursive function call,  ...)
 	- poppler <unfixed> (low; bug #923553)
-	[buster] - poppler <postponed> (Revisit when fixed upstream)
-	[stretch] - poppler <postponed> (Revisit when fixed upstream)
+	[buster] - poppler <ignored> (Minor issue)
+	[stretch] - poppler <ignored> (Minor issue)
 	[jessie] - poppler <postponed> (Minor issue; revisit when fixed upstream)
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/issues/730
 CVE-2019-9542



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa7966b20180cc3d35e7888d42d8600693fc5947

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/fa7966b20180cc3d35e7888d42d8600693fc5947
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20191015/be5c9860/attachment.html>

More information about the debian-security-tracker-commits mailing list