Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f3d651ff by Salvatore Bonaccorso at 2018-04-20T12:13:27+02:00
Five (unimportant) CVEs for ghostscript fixed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -49935,7 +49935,7 @@ CVE-2017-9742 (The score_opcodes function in
opcodes/score7-dis.c in GNU Binutil
CVE-2017-9741 (install/make-config.php in ProjectSend r754 allows remote
attackers to ...)
NOT-FOR-US: ProjectSend
CVE-2017-9740 (The xps_decode_font_char_imp function in xps/xpsfont.c in
Artifex ...)
- - ghostscript <unfixed> (unimportant; bug #869879)
+ - ghostscript 9.22~dfsg-1 (unimportant; bug #869879)
[jessie] - ghostscript <not-affected> (Vulnerable code not present)
[wheezy] - ghostscript <not-affected> (Vulnerable code not present)
NOTE: The Debian binary package is not affected xps/ not used
@@ -50219,21 +50219,21 @@ CVE-2017-9622 (Multiple cross-site scripting (XSS)
vulnerabilities in Telaxus/EP
CVE-2017-9621 (Cross-site scripting (XSS) vulnerability in ...)
NOT-FOR-US: Telaxus/EPESI
CVE-2017-9620 (The xps_select_font_encoding function in xps/xpsfont.c in
Artifex ...)
- - ghostscript <unfixed> (unimportant; bug #869879)
+ - ghostscript 9.22~dfsg-1 (unimportant; bug #869879)
[jessie] - ghostscript <not-affected> (Vulnerable code not present)
[wheezy] - ghostscript <not-affected> (Vulnerable code not present)
NOTE: The Debian binary package is not affected xps/ not used
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698050
NOTE:
http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=3ee55637480d5e319a5de0481b01c3346855cbc9
CVE-2017-9619 (The xps_true_callback_glyph_name function in xps/xpsttf.c in
Artifex ...)
- - ghostscript <unfixed> (unimportant; bug #869879)
+ - ghostscript 9.22~dfsg-1 (unimportant; bug #869879)
[jessie] - ghostscript <not-affected> (Vulnerable code not present)
[wheezy] - ghostscript <not-affected> (Vulnerable code not present)
NOTE: The Debian binary package is not affected xps/ not used
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698042
NOTE:
http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=c53183d4e7103e87368b7cfa15367a47d559e323
CVE-2017-9618 (The xps_load_sfnt_name function in xps/xpsfont.c in Artifex
Ghostscript ...)
- - ghostscript <unfixed> (unimportant; bug #869879)
+ - ghostscript 9.22~dfsg-1 (unimportant; bug #869879)
[jessie] - ghostscript <not-affected> (Vulnerable code not present)
[wheezy] - ghostscript <not-affected> (Vulnerable code not present)
NOTE: The Debian binary package is not affected xps/ not used
@@ -50271,7 +50271,7 @@ CVE-2017-9611 (The Ins_MIRP function in base/ttinterp.c
in Artifex Ghostscript .
NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698024
NOTE:
http://git.ghostscript.com/?p=ghostpdl.git;a=commit;h=c7c55972758a93350882c32147801a3485b010fe
(ghostpdl-9.22rc1)
CVE-2017-9610 (The xps_load_sfnt_name function in xps/xpsfont.c in Artifex
Ghostscript ...)
- - ghostscript <unfixed> (unimportant; bug #869879)
+ - ghostscript 9.22~dfsg-1 (unimportant; bug #869879)
[jessie] - ghostscript <not-affected> (Vulnerable code not present)
[wheezy] - ghostscript <not-affected> (Vulnerable code not present)
NOTE: The Debian binary package is not affected xps/ not used
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3d651ffce9263b1d8be61ac56218d3cb0e15177
---
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/f3d651ffce9263b1d8be61ac56218d3cb0e15177
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
