[Git][security-tracker-team/security-tracker][master] Add CVE-2022-37052/poppler
Salvatore Bonaccorso (@carnil)
carnil at debian.org
Wed Aug 23 07:34:25 BST 2023
Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits:
66a42daa by Salvatore Bonaccorso at 2023-08-23T08:33:59+02:00
Add CVE-2022-37052/poppler
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -76472,7 +76472,9 @@ CVE-2022-37054
CVE-2022-37053 (TRENDnet TEW733GR v1.03B01 is vulnerable to Command injection via /htd ...)
NOT-FOR-US: Trendnet
CVE-2022-37052 (A reachable Object::getString assertion in Poppler 22.07.0 allows atta ...)
- TODO: check
+ - poppler 22.08.0-2
+ NOTE: https://gitlab.freedesktop.org/poppler/poppler/-/issues/1278
+ NOTE: https://gitlab.freedesktop.org/poppler/poppler/-/commit/8677500399fc2548fa816b619580c2c07915a98c (poppler-22.08.0)
CVE-2022-37051 (An issue was discovered in Poppler 22.07.0. There is a reachable abort ...)
TODO: check
CVE-2022-37050 (In Poppler 22.07.0, PDFDoc::savePageAs in PDFDoc.c callows attackers t ...)
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/66a42daa3ae7fb0d8a5f2c7546079185622a049e
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/66a42daa3ae7fb0d8a5f2c7546079185622a049e
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230823/b4f79f7e/attachment.htm>
More information about the debian-security-tracker-commits
mailing list