Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / security-tracker
Commits: bd4819f9 by Salvatore Bonaccorso at 2018-10-31T21:44:16Z Remove no-dsa tagged entries which got an update in DLA-1562-1 - - - - - 1 changed file: - data/CVE/list Changes: ===================================== data/CVE/list ===================================== @@ -12220,7 +12220,6 @@ CVE-2018-13989 (Grundig Smart Inter@ctive TV 3.0 devices allow CSRF attacks via CVE-2018-13988 (Poppler through 0.62 contains an out of bounds read vulnerability due ...) - poppler 0.69.0-2 (low; bug #904922) [stretch] - poppler <no-dsa> (Minor issue) - [jessie] - poppler <no-dsa> (Minor issue) NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1602838 NOTE: https://cgit.freedesktop.org/poppler/poppler/commit/?id=004e3c10df0abda214f0c293f9e269fdd979c5ee (poppler-0.67.0) CVE-2018-13987 @@ -20074,7 +20073,6 @@ CVE-2017-18267 (The FoFiType1C::cvtGlyph function in fofi/FoFiType1C.cc in Poppl [experimental] - poppler 0.65.0-1 - poppler 0.69.0-2 (bug #898357) [stretch] - poppler <no-dsa> (Minor issue) - [jessie] - poppler <no-dsa> (Minor issue) [wheezy] - poppler <ignored> (Minor issue) NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=104942 NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=103238 @@ -20786,7 +20784,6 @@ CVE-2018-10769 (The transferProxy and approveProxy functions of a smart contract NOT-FOR-US: smart contract CVE-2018-10768 (There is a NULL pointer dereference in the AnnotPath::getCoordsLength ...) - poppler 0.38.0-2 - [jessie] - poppler <no-dsa> (Minor issue) [wheezy] - poppler <not-affected> (Vulnerable code is not present) NOTE: https://bugs.freedesktop.org/show_bug.cgi?id=106408 NOTE: Fixed by: https://cgit.freedesktop.org/poppler/poppler/commit/?id=942adfc25e7a00ac3cf032ced2d8949e99099f70 (poppler-0.37) View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bd4819f9afd948e1e3b5822f3ca4398a12d91d06 -- View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/commit/bd4819f9afd948e1e3b5822f3ca4398a12d91d06 You're receiving this email because of your account on salsa.debian.org.
_______________________________________________ debian-security-tracker-commits mailing list debian-security-tracker-commits@alioth-lists.debian.net https://alioth-lists.debian.net/cgi-bin/mailman/listinfo/debian-security-tracker-commits