[Git][security-tracker-team/security-tracker][master] Move back PDF2JSON issues to check status

Salvatore Bonaccorso (@carnil) carnil at debian.org
Fri Jul 30 22:21:53 BST 2021 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
8d8e0066 by Salvatore Bonaccorso at 2021-07-30T23:19:49+02:00
Move back PDF2JSON issues to check status

This partially reverts 9a5b797774fa009202d89f77cd593923f2b23642.

The PDF2JSON issues need further investigation. In fact poppler seems to
embedd it.

Thanks: Moritz Muehlenhoff
Fixes: 9a5b797774fa ("Process some NFUs")

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -73097,31 +73097,31 @@ CVE-2020-19477
 CVE-2020-19476
 	RESERVED
 CVE-2020-19475 (An issue has been found in function CCITTFaxStream::lookChar in PDF2JS ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19474 (An issue has been found in function Gfx::doShowText in PDF2JSON 0.70 t ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19473 (An issue has been found in function DCTStream::decodeImage in PDF2JSON ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19472 (An issue has been found in function DCTStream::readHuffSym in PDF2JSON ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19471 (An issue has been found in function DCTStream::decodeImage in PDF2JSON ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19470 (An issue has been found in function DCTStream::getChar in PDF2JSON 0.7 ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19469 (An issue has been found in function DCTStream::reset in PDF2JSON 0.70  ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19468 (An issue has been found in function EmbedStream::getChar in PDF2JSON 0 ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19467 (An issue has been found in function DCTStream::transformDataUnit in PD ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19466 (An issue has been found in function DCTStream::transformDataUnit in PD ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19465 (An issue has been found in function ObjectStream::getObject in PDF2JSO ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19464 (An issue has been found in function XRef::fetch in PDF2JSON 0.70 that  ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19463 (An issue has been found in function vfprintf in PDF2JSON 0.70 that all ...)
-	NOT-FOR-US: PDF2JSON
+	TODO: check
 CVE-2020-19462
 	RESERVED
 CVE-2020-19461



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d8e00663ec1876de2a286b44b8ec107603814bd

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/8d8e00663ec1876de2a286b44b8ec107603814bd
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210730/3ff91e3c/attachment.htm>

More information about the debian-security-tracker-commits mailing list