Summary: | app-text/poppler: Insufficient sanitization of escape sequences in the error messages (CVE-2012-2142) | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Agostino Sarubbo <ago> |
Component: | Vulnerabilities | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | major | CC: | reavertm |
Priority: | Normal | ||
Version: | unspecified | ||
Hardware: | All | ||
OS: | Linux | ||
URL: | http://www.openwall.com/lists/oss-security/2013/08/09/5 | ||
Whiteboard: | A2 [glsa] | ||
Package list: | Runtime testing required: | --- |
Description
Agostino Sarubbo
2013-08-09 12:52:11 UTC
That commmit went in long before poppler-0.22, and we do not have any affected versions in the tree at least since 11 Apr 2013. Robo-adding sec bugs without any version reference does not really make maintainers enthusiastic, mind you. Nothing else to do for KDE team here. Filing GLSA. Nothing to do for printing team here. This issue was resolved and addressed in GLSA 201310-03 at http://security.gentoo.org/glsa/glsa-201310-03.xml by GLSA coordinator Sean Amoss (ackle). |