[Git][security-tracker-team/security-tracker][master] 2 commits: Add Debian bug reference for CVE-2019-9656/libofx

Mon, 11 Mar 2019 15:07:17 -0700 

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
b13c3356 by Salvatore Bonaccorso at 2019-03-11T22:06:33Z
Add Debian bug reference for CVE-2019-9656/libofx

- - - - -
b2cf904f by Salvatore Bonaccorso at 2019-03-11T22:06:36Z
Add upstream commits for CVE-2018-1664{7,8}/mupdf

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -106,7 +106,7 @@ CVE-2019-9658 (Checkstyle before 8.18 loads external DTDs 
by default. ...)
 CVE-2019-9657
        RESERVED
 CVE-2019-9656 (An issue was discovered in LibOFX 0.9.14. There is a NULL 
pointer ...)
-       - libofx <unfixed>
+       - libofx <unfixed> (bug #924350)
        NOTE: https://github.com/libofx/libofx/issues/22
 CVE-2019-9655
        RESERVED
@@ -32115,10 +32115,12 @@ CVE-2018-16648 (In Artifex MuPDF 1.13.0, the 
fz_append_byte function in fitz/buf
        - mupdf <unfixed> (bug #924351)
        [jessie] - mupdf <ignored> (Minor issue)
        NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699685
+       NOTE: 
http://www.ghostscript.com/cgi-bin/findgit.cgi?38f883fe129a5e89306252a4676eaaf4bc968824
 CVE-2018-16647 (In Artifex MuPDF 1.13.0, the pdf_get_xref_entry function in 
...)
        - mupdf <unfixed> (bug #924351)
        [jessie] - mupdf <ignored> (Minor issue)
        NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=699686
+       NOTE: 
http://www.ghostscript.com/cgi-bin/findgit.cgi?351c99d8ce23bbf7099dbd52771a095f67e45a2c
 CVE-2018-16646 (In Poppler 0.68.0, the Parser::getObj() function in Parser.cc 
may cause ...)
        {DLA-1562-3 DLA-1562-2 DLA-1562-1}
        - poppler <unfixed> (low; bug #909802)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/compare/d529c07fa3fde4adc00d64619c860181a552108b...b2cf904f6eb28c0d63230a4cd5b156a649b8926c

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/compare/d529c07fa3fde4adc00d64619c860181a552108b...b2cf904f6eb28c0d63230a4cd5b156a649b8926c
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

Reply via email to