Moritz Muehlenhoff pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4f26d145 by Moritz Muehlenhoff at 2019-09-11T13:33:22Z
xpdf NFUs
- - - - -
1 changed file:
- data/CVE/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -255,7 +255,7 @@ CVE-2019-16117 (Cross site scripting (XSS) in the
photo-gallery (10Web Photo Gal
CVE-2019-16116
RESERVED
CVE-2019-16115 (In Xpdf 4.01.01, a stack-based buffer under-read could be
triggered in ...)
- TODO: check
+ - xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
CVE-2019-16114 (In ATutor 2.2.4, an unauthenticated attacker can change the
applicatio ...)
NOT-FOR-US: ATutor
CVE-2019-16113 (Bludit 3.9.2 allows remote code execution via
bl-kernel/ajax/upload-im ...)
@@ -320,7 +320,7 @@ CVE-2019-16091 (Symonics libmysofa 0.7 has an out-of-bounds
read in directblockR
CVE-2019-16090
RESERVED
CVE-2019-16088 (Xpdf 3.04 has a SIGSEGV in XRef::fetch in XRef.cc after many
recursive ...)
- TODO: check
+ - xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
CVE-2019-16087
RESERVED
CVE-2019-16086
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4f26d145784c96fb49e57b8433e5716f1f13c1c2
--
View it on GitLab:
https://salsa.debian.org/security-tracker-team/security-tracker/commit/4f26d145784c96fb49e57b8433e5716f1f13c1c2
You're receiving this email because of your account on salsa.debian.org.
_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits
