Advisories ยป MGASA-2017-0237

Updated qpdf packages fix security vulnerabilities

Publication date: 03 Aug 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-9208 , CVE-2017-9209 , CVE-2017-9210 , CVE-2017-11624 , CVE-2017-11625 , CVE-2017-11626 , CVE-2017-11627

Description

This snapshot of the upstream development branch (6.0) of qpdf fixes
several infinite loop vulnerabilities: CVE-2017-9208, CVE-2017-9209,
CVE-2017-9210, CVE-2017-11624, CVE-2017-11625, CVE-2017-11626,
CVE-2017-11627.

For Mageia 5, the cups-filters package was also rebuilt against this
new major version of qpdf.
                

References

SRPMS

6/core

5/core