nomad n/a

add note for pdf2json
author: Moritz Muehlenhoff <jmm@debian.org> 2021-11-16 14:03:40 +0100
committer: Moritz Muehlenhoff <jmm@debian.org> 2021-11-16 14:03:40 +0100
commit: 5f14da3b1fbd21646b4bfcbaafa4aee11df6644d (patch)
tree: d78b92ab83e46b635669a8f3008ae751b2dc178e /data/CVE/2020.list
parent: 7e0c207e61ac8c8b0859282288aa4ac9f67238d3 (diff)
1 files changed, 4 insertions, 0 deletions
diff --git a/data/CVE/2020.list b/data/CVE/2020.list
index ba24700f48..20d8e65506 100644
--- a/data/CVE/2020.list
+++ b/data/CVE/2020.list
@@ -17376,8 +17376,12 @@ CVE-2020-23880
 	RESERVED
 CVE-2020-23879 (pdf2json v0.71 was discovered to contain a NULL pointer dereference in ...)
 	NOT-FOR-US: pdf2json
+	NOTE: pdf2json bundles a 14 year old xpdf release (3.0.2), there's no point in
+	NOTE: tracking whether this affects src:poppler
 CVE-2020-23878 (pdf2json v0.71 was discovered to contain a stack buffer overflow in th ...)
 	NOT-FOR-US: pdf2json
+	NOTE: pdf2json bundles a 14 year old xpdf release (3.0.2), there's no point in
+	NOTE: tracking whether this affects src:poppler
 CVE-2020-23877 (pdf2xml v2.0 was discovered to contain a stack buffer overflow in the  ...)
 	NOT-FOR-US: pdf2xml
 CVE-2020-23876 (pdf2xml v2.0 was discovered to contain a memory leak in the function T ...)
author	Moritz Muehlenhoff <jmm@debian.org>	2021-11-16 14:03:40 +0100
committer	Moritz Muehlenhoff <jmm@debian.org>	2021-11-16 14:03:40 +0100
commit	5f14da3b1fbd21646b4bfcbaafa4aee11df6644d (patch)
tree	d78b92ab83e46b635669a8f3008ae751b2dc178e /data/CVE/2020.list
parent	7e0c207e61ac8c8b0859282288aa4ac9f67238d3 (diff)