[Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-14288 and CVE-2019-14289

Salvatore Bonaccorso carnil at debian.org
Thu Sep 26 06:27:44 BST 2019



Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
7ab31c37 by Salvatore Bonaccorso at 2019-09-26T05:25:30Z
Update status for CVE-2019-14288 and CVE-2019-14289

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7894,17 +7894,15 @@ CVE-2019-14290 (An issue was discovered in Xpdf 4.01.01. There is an out of boun
 	- xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/commit/44cd46a6e04a87bd702dab4a662042f69f16c4ad
 CVE-2019-14289 (An issue was discovered in Xpdf 4.01.01. There is an integer overflow  ...)
-	- poppler 0.57.0-2
-	[stretch] - poppler 0.48.0-2+deb9u1
-	[jessie] - poppler 0.26.5-2+deb8u4
+	- xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/commit/55db66c69fd56826b8523710046deab1a8d14ba2
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/commit/22c4701d5f7be0010ee4519daa546fba5ab7ac13
+	NOTE: Issue correspond to CVE-2017-9776 for src:poppler
 CVE-2019-14288 (An issue was discovered in Xpdf 4.01.01. There is an Integer overflow  ...)
-	- poppler 0.57.0-2
-	[stretch] - poppler 0.48.0-2+deb9u1
-	[jessie] - poppler 0.26.5-2+deb8u4
+	- xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/commit/55db66c69fd56826b8523710046deab1a8d14ba2
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/commit/22c4701d5f7be0010ee4519daa546fba5ab7ac13
+	NOTE: Issue correspond to CVE-2017-9776 for src:poppler
 CVE-2019-14287
 	RESERVED
 CVE-2019-14286 (In app/webroot/js/event-graph.js in MISP 2.4.111, a stored XSS vulnera ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7ab31c37ec6b45d81004659171aa24d34a6ba829

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/7ab31c37ec6b45d81004659171aa24d34a6ba829
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20190926/d09ca500/attachment.html>


More information about the debian-security-tracker-commits mailing list