[Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-14288 and CVE-2019-14289

Salvatore Bonaccorso Wed, 25 Sep 2019 22:28:06 -0700


Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker



Commits:
7ab31c37 by Salvatore Bonaccorso at 2019-09-26T05:25:30Z
Update status for CVE-2019-14288 and CVE-2019-14289

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
@@ -7894,17 +7894,15 @@ CVE-2019-14290 (An issue was discovered in Xpdf 
4.01.01. There is an out of boun
        - xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
        NOTE: 
https://gitlab.freedesktop.org/poppler/poppler/commit/44cd46a6e04a87bd702dab4a662042f69f16c4ad
 CVE-2019-14289 (An issue was discovered in Xpdf 4.01.01. There is an integer 
overflow  ...)
-       - poppler 0.57.0-2
-       [stretch] - poppler 0.48.0-2+deb9u1
-       [jessie] - poppler 0.26.5-2+deb8u4
+       - xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
        NOTE: 
https://gitlab.freedesktop.org/poppler/poppler/commit/55db66c69fd56826b8523710046deab1a8d14ba2
        NOTE: 
https://gitlab.freedesktop.org/poppler/poppler/commit/22c4701d5f7be0010ee4519daa546fba5ab7ac13
+       NOTE: Issue correspond to CVE-2017-9776 for src:poppler
 CVE-2019-14288 (An issue was discovered in Xpdf 4.01.01. There is an Integer 
overflow  ...)
-       - poppler 0.57.0-2
-       [stretch] - poppler 0.48.0-2+deb9u1
-       [jessie] - poppler 0.26.5-2+deb8u4
+       - xpdf <not-affected> (xpdf in Debian uses poppler, which is fixed)
        NOTE: 
https://gitlab.freedesktop.org/poppler/poppler/commit/55db66c69fd56826b8523710046deab1a8d14ba2
        NOTE: 
https://gitlab.freedesktop.org/poppler/poppler/commit/22c4701d5f7be0010ee4519daa546fba5ab7ac13
+       NOTE: Issue correspond to CVE-2017-9776 for src:poppler
 CVE-2019-14287
        RESERVED
 CVE-2019-14286 (In app/webroot/js/event-graph.js in MISP 2.4.111, a stored XSS 
vulnera ...)



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/7ab31c37ec6b45d81004659171aa24d34a6ba829

-- 
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/7ab31c37ec6b45d81004659171aa24d34a6ba829
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
debian-security-tracker-commits mailing list
[email protected]
https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits

[Git][security-tracker-team/security-tracker][master] Update status for CVE-2019-14288 and CVE-2019-14289

Reply via email to