SUSE-SU-2023:4690-1

Опубликовано: 07 дек. 2023

Источник: suse-cvrf

Описание

Security update for poppler

This update for poppler fixes the following issues:

CVE-2018-20662: PDFDoc setup in PDFDoc.cc allows attackers to cause DOS because of a wrong return value from PDFDoc:setup (bsc#1120956).

Список пакетов

openSUSE Leap 15.4

libpoppler73-0.62.0-150000.4.34.1

libpoppler73-32bit-0.62.0-150000.4.34.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20234690-1/
Link for SUSE-SU-2023:4690-1
https://lists.suse.com/pipermail/sle-updates/2023-December/033043.html
E-Mail link for SUSE-SU-2023:4690-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1120956
SUSE Bug 1120956
https://www.suse.com/security/cve/CVE-2018-20662/
SUSE CVE CVE-2018-20662 page

Описание

In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing.

Затронутые продукты

openSUSE Leap 15.4:libpoppler73-0.62.0-150000.4.34.1

openSUSE Leap 15.4:libpoppler73-32bit-0.62.0-150000.4.34.1

Ссылки

https://www.suse.com/security/cve/CVE-2018-20662.html
CVE-2018-20662
https://bugzilla.suse.com/1120939
SUSE Bug 1120939
https://bugzilla.suse.com/1120956
SUSE Bug 1120956
https://bugzilla.suse.com/1214622
SUSE Bug 1214622

SUSE-SU-2023:4690-1

Описание

Список пакетов

openSUSE Leap 15.4

Ссылки

Уязвимость: CVE-2018-20662

Описание

Затронутые продукты

Ссылки