[Git][security-tracker-team/security-tracker][master] Add two new Apache PDFBox issues
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Sat Jun 12 19:48:29 BST 2021
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
22a4633e by Salvatore Bonaccorso at 2021-06-12T20:47:35+02:00
Add two new Apache PDFBox issues
For the 2.x variant it is asserted that they affect 2.0.23 so the
unstable version, no further analysis has been done yet for the 1.x
branch/version.
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -6653,10 +6653,16 @@ CVE-2021-31814
RESERVED
CVE-2021-31813
RESERVED
-CVE-2021-31812
+CVE-2021-31812 [A carefully crafted PDF file can trigger an infinite loop while loading the file]
RESERVED
-CVE-2021-31811
+ - libpdfbox2-java <unfixed>
+ - libpdfbox-java <undetermined>
+ NOTE: https://www.openwall.com/lists/oss-security/2021/06/12/1
+CVE-2021-31811 [A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading a tiny file]
RESERVED
+ - libpdfbox2-java <unfixed>
+ - libpdfbox-java <undetermined>
+ NOTE: https://www.openwall.com/lists/oss-security/2021/06/12/2
CVE-2021-31810
RESERVED
CVE-2021-31809
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22a4633eed48c93b29cfd1e129f09aac384213c1
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/22a4633eed48c93b29cfd1e129f09aac384213c1
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20210612/d9e59ebc/attachment.htm>
More information about the debian-security-tracker-commits
mailing list