UbuntuUpdates.org

Package "libpoppler-cpp-dev"

Name: libpoppler-cpp-dev

Description:

PDF rendering library -- development files (CPP interface)
Latest version: 22.02.0-2ubuntu0.8
Release: jammy (22.04)
Level: security
Repository: main
Head package: poppler
Homepage: https://poppler.freedesktop.org/

Links

All versions of this package
Bug fixes

List of files in package
Repository home page

Download "libpoppler-cpp-dev"

32-bit deb package
64-bit deb package
APT INSTALL

Other versions of "libpoppler-cpp-dev" in Jammy

Repository Area Version
base main 22.02.0-2
updates main 22.02.0-2ubuntu0.8

Changelog

Version: 22.02.0-2ubuntu0.2 2023-08-03 16:07:14 UTC

  poppler (22.02.0-2ubuntu0.2) jammy-security; urgency=medium

  * SECURITY UPDATE: DoS via crafted PDF file
    - debian/patches/CVE-2022-27337.patch: bail out if we run out of file
      when reading in poppler/Hints.cc.
    - CVE-2022-27337
  * SECURITY UPDATE: DoS via crafted PDF file
    - debian/patches/CVE-2023-34872.patch: fix crash in poppler/Outline.cc.
    - CVE-2023-34872

 -- Marc Deslauriers <email address hidden> Wed, 02 Aug 2023 14:52:35 -0400
Source diff to previous version
CVE-2022-27337 A logic error in the Hints::Hints function of Poppler v22.03.0 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.
CVE-2023-34872 A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file

Version: 22.02.0-2ubuntu0.1 2022-09-12 21:06:32 UTC

  poppler (22.02.0-2ubuntu0.1) jammy-security; urgency=medium

  * SECURITY UPDATE: Integer Overflow
    - debian/patches/CVE-2022-38784.patch:Fix crash on broken file
      in poppler/JBIG2Stream.cc.
    - CVE-2022-38784

 -- Leonidas Da Silva Barbosa <email address hidden> Tue, 06 Sep 2022 06:32:35 -0300
CVE-2022-38784 Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Process


About   -   Send Feedback to @ubuntu_updates