Updated poppler packages fix security vulnerabilities
Publication date: 06 Nov 2017Modification date: 06 Nov 2017
Type: security
Affected Mageia releases : 5 , 6
CVE: CVE-2017-14927 , CVE-2017-14976 , CVE-2017-15565
Description
In Poppler 0.59.0, a NULL Pointer Dereference exists in the
SplashOutputDev::type3D0() function in SplashOutputDev.cc via a crafted
PDF document. (CVE-2017-14927)
The FoFiType1C::convertToType0 function in FoFiType1C.cc in Poppler 0.59.0
has a heap-based buffer over-read vulnerability if an out-of-bounds font
dictionary index is encountered, which allows an attacker to launch a
denial of service attack. (CVE-2017-14976)
In Poppler 0.59.0, a NULL Pointer Dereference exists in the
GfxImageColorMap::getGrayLine() function in GfxState.cc via a crafted PDF
document. (CVE-2017-15565)
References
- https://bugs.mageia.org/show_bug.cgi?id=21939
- https://bugzilla.redhat.com/show_bug.cgi?id=1500345
- https://bugzilla.redhat.com/show_bug.cgi?id=1500324
- https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-14927.html
- https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-14976.html
- https://usn.ubuntu.com/usn/usn-3467-1/
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14927
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14976
- https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15565
SRPMS
5/core
- poppler-0.26.5-2.7.mga5
6/core
- poppler-0.52.0-3.5.mga6