DLA 2287-1: poppler security update

Debian 10229 Published 2020-07-24 05:44 by Philipp Esselbach

News

A poppler security update has been released for Debian GNU/Linux 9 LTS to address several issues in Poppler, that could lead to denial of service or possibly other unspecified impact when processing maliciously crafted documents.

DLA 2287-1: poppler security update

- -------------------------------------------------------------------------
Debian LTS Advisory DLA-2287-1 debian-lts@lists.debian.org
https://www.debian.org/lts/security/ Emilio Pozuelo Monfort
July 23, 2020 https://wiki.debian.org/LTS
- -------------------------------------------------------------------------

Package : poppler
Version : 0.48.0-2+deb9u3
CVE ID : CVE-2017-18267 CVE-2018-16646 CVE-2018-20481 CVE-2018-21009
CVE-2019-9200 CVE-2019-9631 CVE-2019-10872 CVE-2019-12293
Debian Bug : 898357 909802 917325 923414 926530 926673 929423

Several issues were found in Poppler, a PDF rendering library, that could
lead to denial of service or possibly other unspecified impact when
processing maliciously crafted documents.

For Debian 9 stretch, these problems have been fixed in version
0.48.0-2+deb9u3.

We recommend that you upgrade your poppler packages.

For the detailed security status of poppler please refer to
its security tracker page at:
https://security-tracker.debian.org/tracker/poppler

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

USN-4434-1: LibVNCServer vulnerabilities

A quick and easy way to lock down SSH

DLA 2287-1: poppler security update

DLA 2287-1: poppler security update

Windows

Linux

macOS

Community