MGASA-2018-0465

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2018-0465.html

Import Source

https://advisories.mageia.org/MGASA-2018-0465.json

JSON Data

https://api.osv.dev/v1/vulns/MGASA-2018-0465

Related

Published

2018-11-22T22:26:34Z

Modified

2018-11-22T22:03:02Z

Summary

Updated poppler packages fix security vulnerabilities

Details

In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack. (CVE-2018-16646)

An issue was discovered in Poppler 0.71.0. There is a reachable abort in Object.h, will lead to denial of service because EmbFile::save2 in FileSpec.cc lacks a stream check before saving an embedded file. (CVE-2018-19058)

An issue was discovered in Poppler 0.71.0. There is a out-of-bounds read in EmbFile::save2 in FileSpec.cc, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating embedded files before save attempts. (CVE-2018-19059)

An issue was discovered in Poppler 0.71.0. There is a NULL pointer dereference in goo/GooString.h, will lead to denial of service, as demonstrated by utils/pdfdetach.cc not validating a filename of an embedded file before constructing a save path. (CVE-2018-19060)

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:6 / poppler

Package

Name: poppler
Purl: pkg:rpm/mageia/poppler?distro=mageia-6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

0.52.0-3.9.mga6

Ecosystem specific

{
    "section": "core"
}