Author: nion Date: 2007-11-15 13:53:17 +0000 (Thu, 15 Nov 2007) New Revision: 7307 Modified: data/CVE/list Log: CVE-2007-5392/3, CVE-2007-4352 fixed in poppler 0.6.2-1 Modified: data/CVE/list ==================================================================--- data/CVE/list 2007-11-15 13:37:13 UTC (rev 7306) +++ data/CVE/list 2007-11-15 13:53:17 UTC (rev 7307) @@ -1906,7 +1906,7 @@ CVE-2007-5394 RESERVED CVE-2007-5393 (Heap-based buffer overflow in the CCITTFaxStream::lookChar method in ...) - - poppler <unfixed> (medium; bug #450628) + - poppler 0.6.2-1 (medium; bug #450628) - kdegraphics 4:3.5.8-2 (medium; bug #450630) - xpdf 3.02-1.3 (medium; bug #450629) - koffice 1:1.6.3-4 (medium; bug #450631) @@ -1922,7 +1922,7 @@ - libextractor 0.5.12-1 NOTE: libextractor uses internal pdf decoder since 0.5.12-1, thus marking as fixed CVE-2007-5392 (Integer overflow in the DCTStream::reset method in xpdf/Stream.cc in ...) - - poppler <unfixed> (medium; bug #450628) + - poppler 0.6.2-1 (medium; bug #450628) - kdegraphics 4:3.5.8-2 (medium; bug #450630) - xpdf 3.02-1.3 (medium; bug #450629) - koffice 1:1.6.3-4 (medium; bug #450631) @@ -4594,7 +4594,7 @@ CVE-2007-4353 (Multiple buffer overflows in IBM AIX 5.2 and 5.3 allow local users in ...) NOT-FOR-US: AIX CVE-2007-4352 (Array index error in the DCTStream::readProgressiveDataUnit method in ...) - - poppler <unfixed> (medium; bug #450628) + - poppler 0.6.2-1 (medium; bug #450628) - kdegraphics 4:3.5.8-2 (medium; bug #450630) - xpdf 3.02-1.3 (medium; bug #450629) - koffice 1:1.6.3-4 (medium; bug #450631)