[Git][security-tracker-team/security-tracker][master] new xpdf issues

Moritz Muehlenhoff (@jmm) jmm at debian.org
Fri Aug 23 11:22:53 BST 2024 


Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker


Commits:
6974a9ca by Moritz Muehlenhoff at 2024-08-23T12:22:07+02:00
new xpdf issues

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -2133,7 +2133,7 @@ CVE-2023-3207
 CVE-2023-2920
 	REJECTED
 CVE-2024-7868 (In Xpdf 4.05 (and earlier), invalid header info in a DCT (JPEG) stream ...)
-	TODO: check
+	- xpdf <not-affected> (Debian uses poppler)
 CVE-2024-7853 (A vulnerability was found in SourceCodester Yoga Class Registration Sy ...)
 	NOT-FOR-US: SourceCodester Yoga Class Registration System
 CVE-2024-7852 (A vulnerability was found in SourceCodester Yoga Class Registration Sy ...)
@@ -2232,9 +2232,9 @@ CVE-2024-23184
 	NOTE: Fixed by: https://github.com/dovecot/core/commit/da61d20311da34f22944c6111a0b97ea2a1f8a47 (2.3.21.1)
 	NOTE: Fixed by: https://github.com/dovecot/core/commit/1481c04f02df7647f520df65d63df7626bf0ee32 (2.3.21.1)
 CVE-2024-7867 (In Xpdf 4.05 (and earlier), very large coordinates in a page box can c ...)
-	TODO: check
+	- xpdf <not-affected> (Debian uses poppler)
 CVE-2024-7866 (In Xpdf 4.05 (and earlier), a PDF object loop in a pattern resource le ...)
-	TODO: check
+	- xpdf <not-affected> (Debian uses poppler)
 CVE-2024-7838 (A vulnerability was found in itsourcecode Online Food Ordering System  ...)
 	NOT-FOR-US: itsourcecode Online Food Ordering System
 CVE-2024-7833 (A vulnerability was found in D-Link DI-8100 16.07. It has been classif ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6974a9ca0baaa6fe60ca6bda35b8b0d332812d42

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/6974a9ca0baaa6fe60ca6bda35b8b0d332812d42
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20240823/d2f096f8/attachment-0001.htm>

More information about the debian-security-tracker-commits mailing list