jmm-guest at alioth.debian.org
2008-Apr-17 22:41 UTC
[Secure-testing-commits] r8563 - in data: CVE DSA
Author: jmm-guest
Date: 2008-04-17 22:41:10 +0000 (Thu, 17 Apr 2008)
New Revision: 8563
Modified:
data/CVE/list
data/DSA/list
Log:
new xpdf issue
Modified: data/CVE/list
==================================================================---
data/CVE/list 2008-04-17 22:37:54 UTC (rev 8562)
+++ data/CVE/list 2008-04-17 22:41:10 UTC (rev 8563)
@@ -309,8 +309,13 @@
- emacs22 <unfixed> (low; bug #476611)
- xemacs21 <unfixed> (low; bug #476613)
[etch] - xemacs21 <no-dsa> (Minor issue)
-CVE-2008-1693
+CVE-2008-1693 [xpdf lack of typechecking for embedded fonts]
RESERVED
+ - xpdf 3.02
+ - poppler <unfixed>
+ TODO: File bug for poppler
+ TODO: kpdf/kdegraphics from Etch are not affected, sid needs to be
checked
+ TODO: check pdftex
CVE-2008-1692 (Eterm 0.9.4 opens an xterm on :0 if -display is not specified
and the ...)
- eterm 0.9.4.0debian1-2.1 (bug #473127)
CVE-2008-1691 (Unspecified vulnerability in SLMail.exe in SLMail Pro 6.3.1.0
and ...)
Modified: data/DSA/list
==================================================================---
data/DSA/list 2008-04-17 22:37:54 UTC (rev 8562)
+++ data/DSA/list 2008-04-17 22:41:10 UTC (rev 8563)
@@ -1,4 +1,7 @@
-[17 Dec 2007] DSA-1547-1 openoffice.org
+[17 Apr 2008] DSA-1548-1 xpdf
+ {CVE-2008-1693}
+ [etch] - xpdf 3.01-9.1+etch3
+[17 Apr 2008] DSA-1547-1 openoffice.org
{CVE-2007-5745 CVE-2007-5746 CVE-2007-5747 CVE-2008-0320}
[etch] - openoffice.org 2.0.4.dfsg.2-7etch5
[sarge] - openoffice.org 1.1.3-9sarge9