UbuntuUpdates.org

Package "poppler"

Name: poppler

Description:

This package is just an umbrella for a group of other packages, it has no description.
Description samples from packages in group:

  • GObject introspection data for poppler-glib
  • PDF rendering library -- development files (CPP interface)
  • PDF rendering library (CPP shared library)
  • PDF rendering library -- development files
Latest version: 0.86.1-0ubuntu1.7
Release: focal (20.04)
Level: updates
Repository: main

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Other versions of "poppler" in Focal

Repository Area Version
base main 0.86.1-0ubuntu1
base universe 0.86.1-0ubuntu1
security main 0.86.1-0ubuntu1.7
security universe 0.86.1-0ubuntu1.7
updates universe 0.86.1-0ubuntu1.7

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: 0.86.1-0ubuntu1.2 2023-08-03 16:07:10 UTC

  poppler (0.86.1-0ubuntu1.2) focal-security; urgency=medium

  * SECURITY UPDATE: DoS via crafted PDF file
    - debian/patches/CVE-2022-27337.patch: bail out if we run out of file
      when reading in poppler/Hints.cc.
    - CVE-2022-27337

 -- Marc Deslauriers <email address hidden> Wed, 02 Aug 2023 15:15:50 -0400
Source diff to previous version
CVE-2022-27337 A logic error in the Hints::Hints function of Poppler v22.03.0 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.

Version: 0.86.1-0ubuntu1.1 2022-09-12 23:07:12 UTC

  poppler (0.86.1-0ubuntu1.1) focal-security; urgency=medium

  * SECURITY UPDATE: Integer Overflow
    - debian/patches/CVE-2022-38784.patch:Fix crash on broken file
      in poppler/JBIG2Stream.cc.
    - CVE-2022-38784

 -- Leonidas Da Silva Barbosa <email address hidden> Tue, 06 Sep 2022 07:53:20 -0300
CVE-2022-38784 Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Process


About   -   Send Feedback to @ubuntu_updates