joeyh at alioth.debian.org
2007-Nov-17 09:14 UTC
[Secure-testing-commits] r7335 - data/CVE
Author: joeyh
Date: 2007-11-17 09:14:07 +0000 (Sat, 17 Nov 2007)
New Revision: 7335
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2007-11-17 07:07:40 UTC (rev 7334)
+++ data/CVE/list 2007-11-17 09:14:07 UTC (rev 7335)
@@ -2042,6 +2042,7 @@
CVE-2007-5394
RESERVED
CVE-2007-5393 (Heap-based buffer overflow in the CCITTFaxStream::lookChar
method in ...)
+ {DTSA-85-1}
- poppler 0.6.2-1 (medium; bug #450628)
- kdegraphics 4:3.5.8-2 (medium; bug #450630)
- xpdf 3.02-1.3 (medium; bug #450629)
@@ -2058,6 +2059,7 @@
- libextractor 0.5.12-1
NOTE: libextractor uses internal pdf decoder since 0.5.12-1, thus marking as
fixed
CVE-2007-5392 (Integer overflow in the DCTStream::reset method in
xpdf/Stream.cc in ...)
+ {DTSA-85-1}
- poppler 0.6.2-1 (medium; bug #450628)
- kdegraphics 4:3.5.8-2 (medium; bug #450630)
- xpdf 3.02-1.3 (medium; bug #450629)
@@ -4733,6 +4735,7 @@
CVE-2007-4353 (Multiple buffer overflows in IBM AIX 5.2 and 5.3 allow local
users in ...)
NOT-FOR-US: AIX
CVE-2007-4352 (Array index error in the DCTStream::readProgressiveDataUnit
method in ...)
+ {DTSA-85-1}
- poppler 0.6.2-1 (medium; bug #450628)
- kdegraphics 4:3.5.8-2 (medium; bug #450630)
- xpdf 3.02-1.3 (medium; bug #450629)