Updated pdfbox packages fix security vulnerabilities
Publication date: 12 Apr 2021Modification date: 12 Apr 2021
Type: security
Affected Mageia releases : 8
CVE: CVE-2021-27807 , CVE-2021-27906
Description
A carefully crafted PDF file can trigger an infinite loop while loading the file. This issue affects Apache PDFBox Apache PDFBox version 2.0.22 and prior 2.0.x versions (CVE-2021-27807). A carefully crafted PDF file can trigger an OutOfMemory-Exception while loading the file. This issue affects Apache PDFBox Apache PDFBox version 2.0.22 and prior 2.0.x versions (CVE-2021-27906).
References
SRPMS
8/core
- pdfbox-2.0.23-1.mga8