Salvatore Bonaccorso pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
53b3f120 by Salvatore Bonaccorso at 2019-01-03T21:52:37Z
Wrap long line for notes in CVE-2018-20662
- - - - -
3f768524 by Salvatore Bonaccorso at 2019-01-03T21:58:07Z
Add Debian bug reference for CVE-2018-20662/poppler
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -655,9 +655,10 @@ CVE-2018-20664 (Zoho ManageEngine ADSelfService Plus 5.x
before build 5701 has X
CVE-2018-20663 (The Reporting Addon (aka Reports Addon) through 2019-01-02 for
CUBA ...)
TODO: check
CVE-2018-20662 (In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers
to cause ...)
- - poppler <unfixed>
+ - poppler <unfixed> (bug #918158)
NOTE: https://gitlab.freedesktop.org/poppler/poppler/issues/706
- NOTE: Initial approach of fixing the issue via
https://gitlab.freedesktop.org/poppler/poppler/commit/9fd5ec0e6e5f763b190f2a55ceb5427cfe851d5f
+ NOTE: Initial approach of fixing the issue via
+ NOTE:
https://gitlab.freedesktop.org/poppler/poppler/commit/9fd5ec0e6e5f763b190f2a55ceb5427cfe851d5f
NOTE: causes regressions on some files and was reverted upstream.
CVE-2019-3580 (OpenRefine through 3.1 allows arbitrary file write because
Directory ...)
NOT-FOR-US: OpenRefine
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/29075c445fa18d1815e568621d42ac7446dd7e89...3f768524f1f5ba8ba946d4378cdff3670e18678b
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/compare/29075c445fa18d1815e568621d42ac7446dd7e89...3f768524f1f5ba8ba946d4378cdff3670e18678b
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
