joeyh at alioth.debian.org
2008-Apr-05 09:14 UTC
[Secure-testing-commits] r8486 - data/CVE
Author: joeyh
Date: 2008-04-05 09:14:15 +0000 (Sat, 05 Apr 2008)
New Revision: 8486
Modified:
data/CVE/list
Log:
automatic update
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-04-05 04:55:34 UTC (rev 8485)
+++ data/CVE/list 2008-04-05 09:14:15 UTC (rev 8486)
@@ -7452,7 +7452,7 @@
CVE-2007-5394
RESERVED
CVE-2007-5393 (Heap-based buffer overflow in the CCITTFaxStream::lookChar
method in ...)
- {DSA-1509-1 DSA-1480-1 DSA-1408-1 DTSA-85-1 DTSA-86-1}
+ {DSA-1537-1 DSA-1509-1 DSA-1480-1 DSA-1408-1 DTSA-85-1 DTSA-86-1}
- poppler 0.6.2-1 (medium; bug #450628)
- kdegraphics 4:3.5.8-2 (medium; bug #450630)
- xpdf 3.02-1.3 (medium; bug #450629)
@@ -7470,7 +7470,7 @@
- libextractor 0.5.12-1
NOTE: libextractor uses internal pdf decoder since 0.5.12-1, thus marking as
fixed
CVE-2007-5392 (Integer overflow in the DCTStream::reset method in
xpdf/Stream.cc in ...)
- {DSA-1509-1 DSA-1480-1 DTSA-85-1 DTSA-86-1}
+ {DSA-1537-1 DSA-1509-1 DSA-1480-1 DTSA-85-1 DTSA-86-1}
- poppler 0.6.2-1 (medium; bug #450628)
- kdegraphics 4:3.5.8-2 (medium; bug #450630)
[etch] - kdegraphics <not-affected> (Vulnerable code not used)
@@ -10250,7 +10250,7 @@
CVE-2007-4353 (Multiple buffer overflows in IBM AIX 5.2 and 5.3 allow local
users in ...)
NOT-FOR-US: AIX
CVE-2007-4352 (Array index error in the DCTStream::readProgressiveDataUnit
method in ...)
- {DSA-1509-1 DSA-1480-1 DTSA-85-1 DTSA-86-1}
+ {DSA-1537-1 DSA-1509-1 DSA-1480-1 DTSA-85-1 DTSA-86-1}
- poppler 0.6.2-1 (medium; bug #450628)
- kdegraphics 4:3.5.8-2 (medium; bug #450630)
[etch] - kdegraphics <not-affected> (Vulnerable code not used)