Описание
Security update for poppler
This update for poppler fixes the following issues:
- CVE-2024-56378: out-of-bounds read within JBIG2Bitmap::combine, which can lead to an application crash. (bsc#1234795)
Список пакетов
openSUSE Leap 15.5
libpoppler-cpp0-23.01.0-150500.3.14.1
libpoppler-cpp0-32bit-23.01.0-150500.3.14.1
libpoppler-devel-23.01.0-150500.3.14.1
libpoppler-glib-devel-23.01.0-150500.3.14.1
libpoppler-glib8-23.01.0-150500.3.14.1
libpoppler-glib8-32bit-23.01.0-150500.3.14.1
libpoppler-qt5-1-23.01.0-150500.3.14.1
libpoppler-qt5-1-32bit-23.01.0-150500.3.14.1
libpoppler-qt5-devel-23.01.0-150500.3.14.1
libpoppler-qt6-3-23.01.0-150500.3.14.1
libpoppler-qt6-devel-23.01.0-150500.3.14.1
libpoppler126-23.01.0-150500.3.14.1
libpoppler126-32bit-23.01.0-150500.3.14.1
poppler-tools-23.01.0-150500.3.14.1
typelib-1_0-Poppler-0_18-23.01.0-150500.3.14.1
Ссылки
- Link for SUSE-SU-2024:4422-1
- E-Mail link for SUSE-SU-2024:4422-1
- SUSE Security Ratings
- SUSE Bug 1234795
- SUSE CVE CVE-2024-56378 page
Описание
libpoppler.so in Poppler through 24.12.0 has an out-of-bounds read vulnerability within the JBIG2Bitmap::combine function in JBIG2Stream.cc.
Затронутые продукты
openSUSE Leap 15.5:libpoppler-cpp0-23.01.0-150500.3.14.1
openSUSE Leap 15.5:libpoppler-cpp0-32bit-23.01.0-150500.3.14.1
openSUSE Leap 15.5:libpoppler-devel-23.01.0-150500.3.14.1
openSUSE Leap 15.5:libpoppler-glib-devel-23.01.0-150500.3.14.1
Ссылки
- CVE-2024-56378
- SUSE Bug 1234795