[Git][security-tracker-team/security-tracker][master] Track fixed version for poppler issues fixed via unstable

Salvatore Bonaccorso (@carnil) carnil at debian.org
Mon Apr 7 18:22:37 BST 2025 


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker


Commits:
711c5a1a by Salvatore Bonaccorso at 2025-04-07T19:22:08+02:00
Track fixed version for poppler issues fixed via unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -174,12 +174,12 @@ CVE-2025-32369 (Kentico Xperience before 13.0.181 allows authenticated users to
 CVE-2025-32366 (In ConnMan through 1.44, parse_rr in dnsproxy.c has a memcpy length th ...)
 	- connman <unfixed> (bug #1102193)
 CVE-2025-32365 (Poppler before 25.04.0 allows crafted input files to trigger out-of-bo ...)
-	- poppler <unfixed> (bug #1102191)
+	- poppler 25.03.0-3 (bug #1102191)
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/-/issues/1577
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1792
 	NOTE: Fixed by: https://gitlab.freedesktop.org/poppler/poppler/-/commit/1f151565bbca5be7449ba8eea6833051cc1baa41 (poppler-25.04.0))
 CVE-2025-32364 (A floating-point exception in the PSStack::roll function of Poppler be ...)
-	- poppler <unfixed> (bug #1102190)
+	- poppler 25.03.0-3 (bug #1102190)
 	NOTE: https://gitlab.freedesktop.org/poppler/poppler/-/issues/1574
 	NOTE: Fixed by: https://gitlab.freedesktop.org/poppler/poppler/-/commit/d87bc726c7cc98f8c26b60ece5f20236e9de1bc3 (poppler-25.04.0)
 CVE-2025-32360 (In Zammad 6.4.x before 6.4.2, there is information exposure. Only agen ...)



View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/711c5a1ab4d3492d91c263420650fbc70e04f2c9

-- 
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/711c5a1ab4d3492d91c263420650fbc70e04f2c9
You're receiving this email because of your account on salsa.debian.org.


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20250407/0fed13fd/attachment.htm>

More information about the debian-security-tracker-commits mailing list