Author: gilbert-guest
Date: 2012-01-05 00:47:58 +0000 (Thu, 05 Jan 2012)
New Revision: 18039
Modified:
data/CVE/list
Log:
jasper/ghostscript issues
Modified: data/CVE/list
==================================================================---
data/CVE/list 2012-01-05 00:29:22 UTC (rev 18038)
+++ data/CVE/list 2012-01-05 00:47:58 UTC (rev 18039)
@@ -1839,10 +1839,14 @@
RESERVED
CVE-2011-4517 (The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in
JasPer ...)
{DSA-2371-1}
- - jasper <unfixed> (bug #652649)
+ - jasper 1.900.1-13 (bug #652649)
+ - ghostscript 8.64~dfsg-2
+ NOTE: ghostscript using system jasper since this version
CVE-2011-4516 (Heap-based buffer overflow in the jpc_cox_getcompparms function
in ...)
{DSA-2371-1}
- - jasper <unfixed> (bug #652649)
+ - jasper 1.900.1-13 (bug #652649)
+ - ghostscript 8.64~dfsg-2
+ NOTE: ghostscript using system jasper since this version
CVE-2011-4515
RESERVED
CVE-2011-4514
@@ -16839,7 +16843,7 @@
CVE-2010-4055 (Stack consumption vulnerability in solid.exe in IBM solidDB
6.5.0.3 ...)
NOT-FOR-US: IBM solidDB
CVE-2010-4054 (The gs_type2_interpret function in Ghostscript allows remote
attackers ...)
- - ghostscript <unfixed> (unimportant)
+ - ghostscript 8.71~dfsg-1
CVE-2010-4053 (Stack-based buffer overflow in an unspecified logging function
in ...)
NOT-FOR-US: IBM Informix Dynamic Server
CVE-2010-4052 (Stack consumption vulnerability in the regcomp implementation in
the ...)