Fedora 40: 2024-7d55be81bd Moderate: QPDF Heap Buffer Overflow
fedora
March 23, 2024
2267205 - TRIAGE CVE-2024-24246 qpdf - Heap Buffer Overflow vulnerability in qpdf [fedora-all] 2265854 - qpdf-11.9.0 is available
Summary
QPDF is a command-line program that does structural, content-preserving
transformations on PDF files. It could have been called something
like pdf-to-pdf. It includes support for merging and splitting PDFs
and to manipulate the list of pages in a PDF file. It is not a PDF viewer
or a program capable of converting PDF into other formats.
Update Information:
2267205 - TRIAGE CVE-2024-24246 qpdf - Heap Buffer Overflow vulnerability in qpdf [fedora-all] 2265854 - qpdf-11.9.0 is available
Change Log
* Fri Mar 1 2024 Zdenek Dohnal
References
[ 1 ] Bug #2267204 - CVE-2024-24246 qpdf: Heap Buffer Overflow vulnerability in qpdf https://bugzilla.redhat.com/show_bug.cgi?id=2267204
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2024-7d55be81bd' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS 
NEXT Severity
important
Lowest
Low
Medium
High
Critical
Name: qpdf
Product: Fedora 40
Version: 11.9.0
Release: 1.fc40
Summary: Command-line tools and library for transforming PDF files
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!