Debian 10263 Published by

A poppler security update has been released for Debian GNU/Linux 8 and 9 Extended LTS to address two vulnerabilities.



ELA-928-1 poppler security update

Package : poppler
Version : 0.26.5-2+deb8u16 (jessie), 0.48.0-2+deb9u6 (stretch)

Related CVEs :
CVE-2020-36023
CVE-2020-36024

Two vulnerabilities have been fixed in poppler, a PDF rendering library.

CVE-2020-36023
Infinite loop in FoFiType1C::cvtGlyph()

CVE-2020-36024
NULL dereference in FoFiType1C::convertToType1()

ELA-928-1 poppler security update