thr3ads.net - Secure testing commits - [Secure-testing-commits] r5312

If this information is useful, please help other people find it:
Share via:
Florian Weimer
2007-Jan-20 20:41 UTC
[Secure-testing-commits] r5312 - data/CVE

Author: fw
Date: 2007-01-20 20:41:37 +0100 (Sat, 20 Jan 2007)
New Revision: 5312

Modified:
   data/CVE/list
Log:
Fix a few issues where tetex-bin was latently vulnerable


Modified: data/CVE/list
==================================================================---
data/CVE/list	2007-01-20 19:31:57 UTC (rev 5311)
+++ data/CVE/list	2007-01-20 19:41:37 UTC (rev 5312)
@@ -19506,10 +19506,11 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	- tetex-bin 3.0-12
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3627 (Stream.cc in Xpdf, as used in products such as gpdf, kpdf,
pdftohtml, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1
DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
-	- tetex <not-affected> (Links dynamically to poppler)
 	- kdegraphics 4:3.5.0-3
 	- gpdf 2.10.0-2 (bug #342286)
 	- xpdf 3.01-4
@@ -19519,6 +19520,8 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	- tetex-bin 3.0-12
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3626 (Xpdf, as used in products such as gpdf, kpdf, pdftohtml,
poppler, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1
DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.3-2
@@ -19531,10 +19534,12 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	- tetex-bin 3.0-12
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3625 (Xpdf, as used in products such as gpdf, kpdf, pdftohtml,
poppler, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1
DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
-	- tetex <not-affected> (Links dynamically to poppler)
+	- tetex 3.0-12
 	- kdegraphics 4:3.5.0-3
 	- xpdf 3.01-4
 	- gpdf 2.10.0-2 (bug #342286)
@@ -19544,10 +19549,11 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3624 (The CCITTFaxStream::CCITTFaxStream function in Stream.cc for
xpdf, ...)
 	{DSA-962-1 DSA-961-1 DSA-950-1 DSA-940-1 DSA-938-1 DSA-937-1 DSA-936-1
DSA-932-1 DSA-931-1 DTSA-28-1}
 	- poppler 0.4.4-1 (bug #346076)
-	- tetex <not-affected> (Links dynamically to poppler)
+	- tetex-bin 3.0-12
 	- gpdf 2.10.0-2 (bug #342286)
 	- kdegraphics 4:3.5.0-3
 	- xpdf 3.01-4
@@ -19557,6 +19563,7 @@
 	- pdftohtml 0.36-12
 	- cupsys 1.1.22-7
 	NOTE: cupsys switched to an external PDF implementation in 1.1.22-7.
+	NOTE: tetex-bin switched to poppler in 3.0-12.
 CVE-2005-3623 (nfs2acl.c in the Linux kernel 2.6.14.4 does not check for
MAY_SATTR ...)
 	[sarge] - kernel-source-2.6.8 <not-affected> (Does not contain NFS ACLs)
 	- linux-2.6 2.6.14-7
Secure testing commits - Jan 2007 - r5312 - data/CVE

[Secure-testing-commits] r5312 - data/CVE
