Advisories ยป MGASA-2019-0422

Updated xpdf packages fix security vulnerability

Publication date: 31 Dec 2019
Type: security
Affected Mageia releases : 7
CVE: CVE-2019-17064

Description

The updated packages fix a security vulnerability:

Catalog.cc in Xpdf 4.02 has a NULL pointer dereference because
Catalog.pageLabels is initialized too late in the Catalog
constructor. (CVE-2019-17064)
                

References

SRPMS

7/core