SUSE-SU-2023:3168-1

Опубликовано: 02 авг. 2023

Источник: suse-cvrf

Описание

Security update for poppler

This update for poppler fixes the following issues:

CVE-2022-27337: Fixed a logic error in the Hints::Hints function which can cause denial of service (bsc#1199272).

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP4

libpoppler-cpp0-22.01.0-150400.3.6.1

libpoppler-devel-22.01.0-150400.3.6.1

libpoppler-glib-devel-22.01.0-150400.3.6.1

libpoppler-glib8-22.01.0-150400.3.6.1

libpoppler117-22.01.0-150400.3.6.1

poppler-tools-22.01.0-150400.3.6.1

typelib-1_0-Poppler-0_18-22.01.0-150400.3.6.1

SUSE Linux Enterprise Module for Package Hub 15 SP4

libpoppler-cpp0-22.01.0-150400.3.6.1

libpoppler-devel-22.01.0-150400.3.6.1

libpoppler-glib8-32bit-22.01.0-150400.3.6.1

libpoppler-qt5-1-22.01.0-150400.3.6.1

libpoppler-qt5-devel-22.01.0-150400.3.6.1

libpoppler117-32bit-22.01.0-150400.3.6.1

SUSE Linux Enterprise Workstation Extension 15 SP5

libpoppler117-22.01.0-150400.3.6.1

openSUSE Leap 15.4

libpoppler-cpp0-22.01.0-150400.3.6.1

libpoppler-cpp0-32bit-22.01.0-150400.3.6.1

libpoppler-devel-22.01.0-150400.3.6.1

libpoppler-glib-devel-22.01.0-150400.3.6.1

libpoppler-glib8-22.01.0-150400.3.6.1

libpoppler-glib8-32bit-22.01.0-150400.3.6.1

libpoppler-qt5-1-22.01.0-150400.3.6.1

libpoppler-qt5-1-32bit-22.01.0-150400.3.6.1

libpoppler-qt5-devel-22.01.0-150400.3.6.1

libpoppler-qt6-3-22.01.0-150400.3.6.1

libpoppler-qt6-devel-22.01.0-150400.3.6.1

libpoppler117-22.01.0-150400.3.6.1

libpoppler117-32bit-22.01.0-150400.3.6.1

poppler-tools-22.01.0-150400.3.6.1

typelib-1_0-Poppler-0_18-22.01.0-150400.3.6.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20233168-1/
Link for SUSE-SU-2023:3168-1
https://lists.suse.com/pipermail/sle-security-updates/2023-August/015763.html
E-Mail link for SUSE-SU-2023:3168-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1199272
SUSE Bug 1199272
https://www.suse.com/security/cve/CVE-2022-27337/
SUSE CVE CVE-2022-27337 page

Описание

A logic error in the Hints::Hints function of Poppler v22.03.0 allows attackers to cause a Denial of Service (DoS) via a crafted PDF file.

Затронутые продукты

SUSE Linux Enterprise Module for Basesystem 15 SP4:libpoppler-cpp0-22.01.0-150400.3.6.1

SUSE Linux Enterprise Module for Basesystem 15 SP4:libpoppler-devel-22.01.0-150400.3.6.1

SUSE Linux Enterprise Module for Basesystem 15 SP4:libpoppler-glib-devel-22.01.0-150400.3.6.1

SUSE Linux Enterprise Module for Basesystem 15 SP4:libpoppler-glib8-22.01.0-150400.3.6.1

Ссылки

https://www.suse.com/security/cve/CVE-2022-27337.html
CVE-2022-27337
https://bugzilla.suse.com/1199272
SUSE Bug 1199272
https://bugzilla.suse.com/1225040
SUSE Bug 1225040

SUSE-SU-2023:3168-1

Описание

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP4

SUSE Linux Enterprise Module for Package Hub 15 SP4

SUSE Linux Enterprise Workstation Extension 15 SP5

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2022-27337

Описание

Затронутые продукты

Ссылки