[Secure-testing-commits] [Git][security-tracker-team/security-tracker][master] Record fixed version for mupdf in unstable

[Salvatore Bonaccorso]

Salvatore Bonaccorso pushed to branch master at Debian Security Tracker / 
security-tracker


Commits:
844030ca by Salvatore Bonaccorso at 2018-03-14T15:13:29+01:00
Record fixed version for mupdf in unstable

- - - - -


1 changed file:

- data/CVE/list


Changes:

=====================================
data/CVE/list
=====================================
--- a/data/CVE/list
+++ b/data/CVE/list
@@ -4151,7 +4151,7 @@ CVE-2018-1000052 (fmtlib version prior to version 4.1.0 
(before commit ...)
        NOTE: https://github.com/fmtlib/fmt/issues/642
        NOTE: 
https://github.com/fmtlib/fmt/commit/8cf30aa2be256eba07bb1cefb998c52326e846e7
 CVE-2018-1000051 (Artifex Mupdf version 1.12.0 contains a Use After Free 
vulnerability ...)
-       - mupdf <unfixed> (bug #891245)
+       - mupdf 1.12.0+ds1-1 (bug #891245)
        NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698825
        NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698873
        NOTE: Fixed by: 
http://www.ghostscript.com/cgi-bin/findgit.cgi?321ba1de287016b0036bf4a56ce774ad11763384
@@ -4526,7 +4526,7 @@ CVE-2018-6546
 CVE-2018-6545 (Ipswitch MoveIt v8.1 is vulnerable to a Stored Cross-Site 
Scripting ...)
        NOT-FOR-US: Ipswitch MoveIt
 CVE-2018-6544 (pdf_load_obj_stm in pdf/pdf-xref.c in Artifex MuPDF 1.12.0 
could ...)
-       - mupdf <unfixed> (bug #891245)
+       - mupdf 1.12.0+ds1-1 (bug #891245)
        NOTE: 
http://git.ghostscript.com/?p=mupdf.git;h=26527eef77b3e51c2258c8e40845bfbc015e405d
        NOTE: 
http://git.ghostscript.com/?p=mupdf.git;h=b03def134988da8c800adac1a38a41a1f09a1d89
        NOTE: https://bugs.ghostscript.com/show_bug.cgi?id=698830



View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/844030ca7f948a5b8a8f1bdd14c1561cda05e4e3

---
View it on GitLab: 
https://salsa.debian.org/security-tracker-team/security-tracker/commit/844030ca7f948a5b8a8f1bdd14c1561cda05e4e3
You're receiving this email because of your account on salsa.debian.org.

_______________________________________________
Secure-testing-commits mailing list
Secure-testing-commits@lists.alioth.debian.org
http://lists.alioth.debian.org/cgi-bin/mailman/listinfo/secure-testing-commits