xpdf: add recent CVE IDs to the knownVulnerabilities

The package already has some known vulnerabilities. I'm adding the new ones mostly to save future me some time so I do not have to ask myself if this long list on unpatched issues is expected or not. Upstream expects to to fix all of that in xpdf 5.
2023-05-19 16:36:39 +02:00 · 2023-05-19 16:36:39 +02:00 · 19916860db
parent 5dcb4a7ab7
commit 19916860db
1 changed files with 21 additions and 0 deletions
--- a/pkgs/applications/misc/xpdf/default.nix
+++ b/pkgs/applications/misc/xpdf/default.nix
@ -78,6 +78,27 @@ stdenv.mkDerivation rec {
      "CVE-2019-9587: loop in PDF objects"
      "CVE-2019-9588: loop in PDF objects"
      "CVE-2019-16088: loop in PDF objects"
+      "CVE-2022-38334"
+      "CVE-2022-38928"
+      "CVE-2022-41842"
+      "CVE-2022-41843"
+      "CVE-2022-41844"
+      "CVE-2022-43071"
+      "CVE-2022-43295"
+      "CVE-2022-45586"
+      "CVE-2022-45587"
+      "CVE-2023-2662"
+      "CVE-2023-2663"
+      "CVE-2023-2664"
+      "CVE-2023-26930"
+      "CVE-2023-26931"
+      "CVE-2023-26934"
+      "CVE-2023-26935"
+      "CVE-2023-26936"
+      "CVE-2023-26937"
+      "CVE-2023-26938"
+      "CVE-2023-27655"
+      "CVE-2023-31557"
    ];
  };
 }