oss-security September 2010 archive
Main Archive Page > Month Archives  > oss-security archives
oss-security: [oss-security] CVE requests: Poppler, Quassel, Pyf

[oss-security] CVE requests: Poppler, Quassel, Pyfribidi, Overkill, DocUtils, FireGPG, Wireshark

From: Moritz Muehlenhoff <jmm_at_nospam>
Date: Wed Sep 29 2010 - 17:50:30 GMT
To: oss-security@lists.openwall.com

Hi,
here's a few more CVE requests for issues in the Debian Security Tracker
without a CVE ID assigned:

1. Poppler (might also affect xpdf and kpdf due to code heritage, not determined yet)
http://secunia.com/advisories/41596/
-> Links to poppler git commits are given in the Secunia link

2. Quassel
http://quassel-irc.org/node/115

3. Pyfribidi
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=570068

4. Overkill (this should be a CVE-2009 ID)
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=549310

5. Emacs mode for reStructuredText (from DocUtils) (this should be a CVE-2009 ID)
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=560755

6. FireGPG (this should be a CVE-2008 ID)
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=514386
http://securityvulns.com/Udocument757.html

7. Wireshark BER dissector
http://archives.neohapsis.com/archives/bugtraq/2010-09/0088.html

Cheers,
        Moritz