Описание
ELSA-2023-2810: poppler security update (MODERATE)
[20.11.0-6]
- Check for overflow when computing number of symbols
- in JBIG2 text region
- Resolves: #2126361
Обновленные пакеты
Oracle Linux 8
Oracle Linux aarch64
poppler
20.11.0-6.el8
poppler-cpp
20.11.0-6.el8
poppler-cpp-devel
20.11.0-6.el8
poppler-devel
20.11.0-6.el8
poppler-glib
20.11.0-6.el8
poppler-glib-devel
20.11.0-6.el8
poppler-qt5
20.11.0-6.el8
poppler-qt5-devel
20.11.0-6.el8
poppler-utils
20.11.0-6.el8
Oracle Linux x86_64
poppler
20.11.0-6.el8
poppler-cpp
20.11.0-6.el8
poppler-cpp-devel
20.11.0-6.el8
poppler-devel
20.11.0-6.el8
poppler-glib
20.11.0-6.el8
poppler-glib-devel
20.11.0-6.el8
poppler-qt5
20.11.0-6.el8
poppler-qt5-devel
20.11.0-6.el8
poppler-utils
20.11.0-6.el8
Связанные CVE
Связанные уязвимости
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
Poppler prior to and including 22.08.0 contains an integer overflow in ...
