Updated poppler packages fix a security vulnerability
Publication date: 16 Jul 2026Modification date: 15 Jul 2026
Type: security
Affected Mageia releases : 10 , 9
CVE: CVE-2026-10118
Description
The updated packages fix a security vulnerability:
Integer overflow in poppler splashoutputdev::tilingpatternfill leads to
heap buffer overflow via unchecked dimension multiplication.
(CVE-2026-10118)
References
SRPMS
10/core
- poppler-25.12.0-1.1.mga10
9/core
- poppler-23.02.0-1.9.mga9