Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-Id: <20091130225231.be9c1715.michael.s.gilbert@gmail.com>
Date: Mon, 30 Nov 2009 22:52:31 -0500
From: Michael Gilbert <michael.s.gilbert@...il.com>
To: oss-security@...ts.openwall.com
Cc: "Steven M. Christey" <coley@...us.mitre.org>
Subject: Re: Need more information on recent poppler issues

On Mon, 30 Nov 2009 20:08:56 -0500 (EST) Steven M. Christey wrote:

> 
> DSA-1941 lists three reserved CVE entries for Poppler issues, but there
> aren't any more details, which makes it difficult to create CVE
> descriptions.  Specifically, CVE-2009-3906, CVE-2009-3907, and
> CVE-2009-3908 don't have any details as far as I can tell.
> 
> Can anybody help?

those appear to be typos in the DSA.  the correct CVEs are
CVE-2009-3606, CVE-2009-3607, CVE-2009-3608, and CVE-2009-3609, which
follow in the CVE-2009-360* series of recent xpdf flaws.  hope this
helps.

best wishes,
mike

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.