Author: carnil
Date: 2017-03-13 11:20:36 +0000 (Mon, 13 Mar 2017)
New Revision: 49634
Modified:
data/CVE/list
Log:
CVEs assigned for libpodofo
Modified: data/CVE/list
===================================================================
--- data/CVE/list 2017-03-13 09:49:57 UTC (rev 49633)
+++ data/CVE/list 2017-03-13 11:20:36 UTC (rev 49634)
@@ -6,26 +6,6 @@
RESERVED
CVE-2017-6850
RESERVED
-CVE-2017-6849
- RESERVED
-CVE-2017-6848
- RESERVED
-CVE-2017-6847
- RESERVED
-CVE-2017-6846
- RESERVED
-CVE-2017-6845
- RESERVED
-CVE-2017-6844
- RESERVED
-CVE-2017-6843
- RESERVED
-CVE-2017-6842
- RESERVED
-CVE-2017-6841
- RESERVED
-CVE-2017-6840
- RESERVED
CVE-2017-6839
RESERVED
- audiofile <unfixed>
@@ -1018,43 +998,43 @@
RESERVED
CVE-2017-6427 (A Buffer Overflow was discovered in EvoStream Media Server
1.7.1. A ...)
NOT-FOR-US: EvoStream Media Server
-CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray
(PdfColor.cpp)]
+CVE-2017-6849 [NULL pointer dereference in PoDoFo::PdfColorGray::~PdfColorGray
(PdfColor.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/10
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcolorgraypdfcolorgray-pdfcolor-cpp
-CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfXObject::PdfXObject
(PdfXObject.cpp)]
+CVE-2017-6848 [NULL pointer dereference in PoDoFo::PdfXObject::PdfXObject
(PdfXObject.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/9
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfxobjectpdfxobject-pdfxobject-cpp
-CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfVariant::DelayedLoad
(PdfVariant.h)]
+CVE-2017-6847 [NULL pointer dereference in PoDoFo::PdfVariant::DelayedLoad
(PdfVariant.h)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/8
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfvariantdelayedload-pdfvariant-h
-CVE-2017-XXXX [NULL pointer dereference in
GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace
(graphicsstack.h)]
+CVE-2017-6846 [NULL pointer dereference in
GraphicsStack::TGraphicsStackElement::SetNonStrokingColorSpace
(graphicsstack.h)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/7
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcoloroperator-pdfcolor-cpp
-CVE-2017-XXXX [NULL pointer dereference in PoDoFo::PdfColor::operator=
(PdfColor.cpp)]
+CVE-2017-6845 [NULL pointer dereference in PoDoFo::PdfColor::operator=
(PdfColor.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/6
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-podofopdfcoloroperator-pdfcolor-cpp
-CVE-2017-XXXX [global buffer overflow in PoDoFo::PdfParser::ReadXRefSubsection
(PdfParser.cpp)]
+CVE-2017-6844 [global buffer overflow in PoDoFo::PdfParser::ReadXRefSubsection
(PdfParser.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/5
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-global-buffer-overflow-in-podofopdfparserreadxrefsubsection-pdfparser-cpp
-CVE-2017-XXXX [heap-based buffer overflow in PoDoFo::PdfVariant::DelayedLoad
(PdfVariant.h)]
+CVE-2017-6843 [heap-based buffer overflow in PoDoFo::PdfVariant::DelayedLoad
(PdfVariant.h)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/4
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-heap-based-buffer-overflow-in-podofopdfvariantdelayedload-pdfvariant-h
-CVE-2017-XXXX [NULL pointer dereference in ColorChanger::GetColorFromStack
(colorchanger.cpp)]
+CVE-2017-6842 [NULL pointer dereference in ColorChanger::GetColorFromStack
(colorchanger.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/3
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-colorchangergetcolorfromstack-colorchanger-cpp
-CVE-2017-XXXX [NULL pointer dereference in
GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h)]
+CVE-2017-6841 [NULL pointer dereference in
GraphicsStack::TGraphicsStackElement::~TGraphicsStackElement (graphicsstack.h)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/2
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-null-pointer-dereference-in-graphicsstacktgraphicsstackelementtgraphicsstackelement-graphicsstack-h
-CVE-2017-XXXX [invalid memory read in ColorChanger::GetColorFromStack
(colorchanger.cpp)]
+CVE-2017-6840 [invalid memory read in ColorChanger::GetColorFromStack
(colorchanger.cpp)]
- libpodofo <unfixed> (bug #856592)
NOTE: http://www.openwall.com/lists/oss-security/2017/03/02/1
NOTE:
https://blogs.gentoo.org/ago/2017/03/02/podofo-invalid-memory-read-in-colorchangergetcolorfromstack-colorchanger-cpp
_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits
