RLSA-2026:0130

Опубликовано: 07 янв. 2026

Источник: rocky

Оценка: Moderate

Описание

Moderate: poppler security update

Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince.

Security Fix(es):

poppler: Out-of-Bounds Read in Poppler (CVE-2025-32365)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

Rocky Linux 8

Связанные CVE

CVE-2025-32365

Ссылки на источники

Исправления

https://bugzilla.redhat.com/show_bug.cgi?id=2357656
Red Hat - 2357656

Связанные уязвимости

CVE-2025-32365

CVSS3: 4

ubuntu

10 месяцев назад

Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.

CVE-2025-32365

CVSS3: 4

redhat

10 месяцев назад

Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.

CVE-2025-32365

CVSS3: 4

nvd

10 месяцев назад

Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.

CVE-2025-32365

CVSS3: 4

debian

10 месяцев назад

Poppler before 25.04.0 allows crafted input files to trigger out-of-bo ...

RLSA-2026:0128

rocky

29 дней назад

Moderate: poppler security update