Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

suse-cvrf логотип

SUSE-SU-2025:1434-1

Опубликовано: 02 мая 2025
Источник: suse-cvrf

Описание

Security update for poppler

This update for poppler fixes the following issues:

  • CVE-2025-43903: improper verification of adbe.pkcs7.sha1 signatures allows for signature forgeries. (bsc#1241620)

Список пакетов

SUSE Linux Enterprise Module for Basesystem 15 SP6
libpoppler-cpp0-24.03.0-150600.3.13.1
libpoppler-devel-24.03.0-150600.3.13.1
libpoppler-glib-devel-24.03.0-150600.3.13.1
libpoppler-glib8-24.03.0-150600.3.13.1
libpoppler135-24.03.0-150600.3.13.1
poppler-tools-24.03.0-150600.3.13.1
typelib-1_0-Poppler-0_18-24.03.0-150600.3.13.1
SUSE Linux Enterprise Module for Package Hub 15 SP6
libpoppler-cpp0-24.03.0-150600.3.13.1
libpoppler-devel-24.03.0-150600.3.13.1
libpoppler-glib8-32bit-24.03.0-150600.3.13.1
libpoppler-qt5-1-24.03.0-150600.3.13.1
libpoppler-qt5-devel-24.03.0-150600.3.13.1
libpoppler-qt6-3-24.03.0-150600.3.13.1
libpoppler-qt6-devel-24.03.0-150600.3.13.1
libpoppler135-32bit-24.03.0-150600.3.13.1
openSUSE Leap 15.6
libpoppler-cpp0-24.03.0-150600.3.13.1
libpoppler-cpp0-32bit-24.03.0-150600.3.13.1
libpoppler-devel-24.03.0-150600.3.13.1
libpoppler-glib-devel-24.03.0-150600.3.13.1
libpoppler-glib8-24.03.0-150600.3.13.1
libpoppler-glib8-32bit-24.03.0-150600.3.13.1
libpoppler-qt5-1-24.03.0-150600.3.13.1
libpoppler-qt5-1-32bit-24.03.0-150600.3.13.1
libpoppler-qt5-devel-24.03.0-150600.3.13.1
libpoppler-qt6-3-24.03.0-150600.3.13.1
libpoppler-qt6-devel-24.03.0-150600.3.13.1
libpoppler135-24.03.0-150600.3.13.1
libpoppler135-32bit-24.03.0-150600.3.13.1
poppler-tools-24.03.0-150600.3.13.1
typelib-1_0-Poppler-0_18-24.03.0-150600.3.13.1

Ссылки

Описание

NSSCryptoSignBackend.cc in Poppler before 25.04.0 does not verify the adbe.pkcs7.sha1 signatures on documents, resulting in potential signature forgeries.

Затронутые продукты
SUSE Linux Enterprise Module for Basesystem 15 SP6:libpoppler-cpp0-24.03.0-150600.3.13.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:libpoppler-devel-24.03.0-150600.3.13.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:libpoppler-glib-devel-24.03.0-150600.3.13.1
SUSE Linux Enterprise Module for Basesystem 15 SP6:libpoppler-glib8-24.03.0-150600.3.13.1
Ссылки