[Git][security-tracker-team/security-tracker][master] track additional source packages for pdftk issues
Moritz Muehlenhoff (@jmm)
jmm at debian.org
Tue Jul 25 23:57:47 BST 2023
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
571a2d2e by Moritz Muehlenhoff at 2023-07-26T00:57:15+02:00
track additional source packages for pdftk issues
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -144095,11 +144095,13 @@ CVE-2021-37819 (PDF Labs pdftk-java v3.2.3 was discovered to contain an infinite
[bullseye] - pdftk-java <no-dsa> (Minor issue)
[buster] - pdftk-java <no-dsa> (Minor issue)
- pdftk 2.02-5
+ - libitext-java <unfixed>
+ - libitext1-java <unfixed>
+ - libitext5-java <unfixed>
NOTE: https://gitlab.com/pdftk-java/pdftk/-/merge_requests/21
NOTE: https://gitlab.com/pdftk-java/pdftk/-/commit/75deacdf5c46fd4eefb310c784eb9dfdc7b9fdc9 (v3.3.0)
NOTE: https://gitlab.com/pdftk-java/pdftk/-/commit/9b0cbb76c8434a8505f02ada02a94263dcae9247 (v3.3.0)
NOTE: Starting with 2.02-5 src:pdftk is just a transition package towards src:pdftk-java
- TODO: check impact on other sources embedding lowagie/text/pdf/PdfReader.java
CVE-2021-37818
RESERVED
CVE-2021-37817
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/571a2d2e43ab35470cbaf7a3e0bb3a8d9a5a38b5
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/571a2d2e43ab35470cbaf7a3e0bb3a8d9a5a38b5
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20230725/461838aa/attachment.htm>
More information about the debian-security-tracker-commits
mailing list