Package: dvipng
Version: 1.15-1.1
Severity: normal
Tags: security
Dear Maintainer,
dvipng crashes when converting the following file (crash.dvi). Crash
exists on versions 1.15-1.1/1.14-2. The crash was also reproduced in
1.15-1.1-b1 (from
https://software.pureos.net/package/bin/landing/dvipng).
Hi,
Debian is no longer supporting Debian 8 Jessie, this bug can be closed.
Antoine
On 11/17/2019 11:33 PM, Debian Bug Tracking System wrote:
> Thank you for filing a new Bug report with Debian.
>
> You can follow progress on this Bug here: 944979:
> https://bugs.debian.org/cgi-bin/bugreport.c
Package: tcpxtract
Versions: 1.0.1-13
Dear Maintainer,
tcpxtract when analyzing the following file (crash.tcpdump). Crash exists on
Debian Jessie, Stretch and Buster (Bullseye and Sid seems to use the same
package as Buster).
Versions are 1.0.1-13 (buster), 1.0.1-11 (stretch), 1.0.1-8 (jessie)
Package: unrtf
Version: 0.21.5-3+deb8u1
Dear Maintainer,
unrtf on Debian Jessie crashes when analyzing the following file (crash.rtf).
unrtf is not crashing on Debian Stretch Package (0.21.9-clean-3).
Package info:
$ dpkg --list
Desired=Unknown/Install/Remove/Purge/Hold
| Status=Not/Inst/Conf-f
Hi!
I have tested the poppler (0.26.5-2+deb8u13) package, bug is still here.
Compilation with ASAN still report double free.
Kind regards,
Antoine
Package: poppler-util
Version: 0.26.5-2+deb8u11
Dear Maintainer,
pdfinfo on Debian Jessie crashes when analyzing the following file (crash.pdf).
pdfinfo is not crashing on latest pdfinfo (0.81.0) or on Debian Stretch Package
(0.48.0-2+deb9u2).
Package info:
ace@debian:~$ dpkg --list poppler-ut
0 00:00
0b7a21000-b7a42000 rw-p 00:00 0 [heap]bfa57000-bfa78000
rw-p 00:00 0 [stack] Abandon*
I think these bugs may be security issues.
Regard.
*Antoine Cervoise*
Security consultant
Direction Risk & Security
*Mob. : *+33 (0)6 60 65 22 18 <#> <#> <#SafeHtmlFilter_>
antoine.cervo...@devoteam.com
7 matches
Mail list logo
