[Git][security-tracker-team/security-tracker][master] Add notes for CVE-2022-38784/poppler

Fri Sep 2 21:16:35 BST 2022


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
9f64431b by Salvatore Bonaccorso at 2022-09-02T22:15:54+02:00
Add notes for CVE-2022-38784/poppler

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2333,6 +2333,8 @@ CVE-2022-38784 (Poppler prior to and including 22.08.0 contains an integer overf
 	NOTE: Fixed by: https://gitlab.freedesktop.org/poppler/poppler/-/commit/27354e9d9696ee2bc063910a6c9a6b27c5184a52 (poppler-22.09.0)
 	NOTE: This is CVE-2021-30860 in Apple CoreGraphics and CVE-2022-38171 in xpdf
 	NOTE: https://gist.github.com/zmanion/b2ed0d1a0cec163ecd07d5e3d9740dc6
+	NOTE: https://www.openwall.com/lists/oss-security/2022/09/02/11
+	NOTE: https://googleprojectzero.blogspot.com/2021/12/a-deep-dive-into-nso-zero-click.html
 CVE-2022-38783
 	RESERVED
 CVE-2022-38782



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f64431b718439bd6f1609eed2017fa449ba674e

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/9f64431b718439bd6f1609eed2017fa449ba674e
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20220902/d337867f/attachment.htm>
