SUSE-SU-2023:2941-1

Опубликовано: 24 июл. 2023

Источник: suse-cvrf

Описание

Security update for poppler

This update for poppler fixes the following issues:

CVE-2022-27337: Fixed a logic error in the Hints::Hints function which can cause denial of service (bsc#1199272).

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP4

libpoppler89-0.79.0-150200.3.11.1

SUSE Linux Enterprise Module for Basesystem 15 SP5

libpoppler89-0.79.0-150200.3.11.1

SUSE Linux Enterprise Real Time 15 SP3

libpoppler-cpp0-0.79.0-150200.3.11.1

libpoppler-devel-0.79.0-150200.3.11.1

libpoppler-glib-devel-0.79.0-150200.3.11.1

libpoppler-glib8-0.79.0-150200.3.11.1

libpoppler89-0.79.0-150200.3.11.1

poppler-tools-0.79.0-150200.3.11.1

typelib-1_0-Poppler-0_18-0.79.0-150200.3.11.1

SUSE Manager Proxy 4.2

libpoppler-cpp0-0.79.0-150200.3.11.1

libpoppler-devel-0.79.0-150200.3.11.1

libpoppler-glib-devel-0.79.0-150200.3.11.1

libpoppler-glib8-0.79.0-150200.3.11.1

libpoppler89-0.79.0-150200.3.11.1

poppler-tools-0.79.0-150200.3.11.1

typelib-1_0-Poppler-0_18-0.79.0-150200.3.11.1

SUSE Manager Server 4.2

libpoppler-cpp0-0.79.0-150200.3.11.1

libpoppler-devel-0.79.0-150200.3.11.1

libpoppler-glib-devel-0.79.0-150200.3.11.1

libpoppler-glib8-0.79.0-150200.3.11.1

libpoppler89-0.79.0-150200.3.11.1

poppler-tools-0.79.0-150200.3.11.1

typelib-1_0-Poppler-0_18-0.79.0-150200.3.11.1

openSUSE Leap 15.4

libpoppler89-0.79.0-150200.3.11.1

libpoppler89-32bit-0.79.0-150200.3.11.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20232941-1/
Link for SUSE-SU-2023:2941-1
https://lists.suse.com/pipermail/sle-security-updates/2024-February/018043.html
E-Mail link for SUSE-SU-2023:2941-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1199272
SUSE Bug 1199272
https://www.suse.com/security/cve/CVE-2022-27337/
SUSE CVE CVE-2022-27337 page

Описание

A logic error in the Hints::Hints function of Poppler v22.03.0 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP4:libpoppler89-0.79.0-150200.3.11.1

SUSE Linux Enterprise Module for Basesystem 15 SP5:libpoppler89-0.79.0-150200.3.11.1

SUSE Linux Enterprise Real Time 15 SP3:libpoppler-cpp0-0.79.0-150200.3.11.1

SUSE Linux Enterprise Real Time 15 SP3:libpoppler-devel-0.79.0-150200.3.11.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-27337.html
CVE-2022-27337
https://bugzilla.suse.com/1199272
SUSE Bug 1199272
https://bugzilla.suse.com/1225040
SUSE Bug 1225040

SUSE-SU-2023:2941-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP4

SUSE Linux Enterprise Module for Basesystem 15 SP5

SUSE Linux Enterprise Real Time 15 SP3

SUSE Manager Proxy 4.2

SUSE Manager Server 4.2

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2022-27337

Описание

Затронутые продукты

Ссылки