Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Ubuntu 18.04 LTS: USN-3905-1 Critical: Poppler Denial Of Service

ubuntu
Calendar Grey March 11, 2019
Dist Ubuntu Esm H88
=========================================================================Ubuntu Security Notice USN-
poppler could be made to crash if it opened a specially craftedfile.

Summary

poppler could be made to crash if it opened a specially crafted

file.

Software Description:

- poppler: PDF rendering library

Details:

It was discovered that poppler incorrectly handled certain PDF files.

An attacker could possibly use this issue to cause a denial of service.

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.10:
  libpoppler79                    0.68.0-0ubuntu1.6
  poppler-utils                   0.68.0-0ubuntu1.6

Ubuntu 18.04 LTS:
  libpoppler73                    0.62.0-2ubuntu2.8
  poppler-utils                   0.62.0-2ubuntu2.8

Ubuntu 16.04 LTS:
  libpoppler58                    0.41.0-0ubuntu1.13
  poppler-utils                   0.41.0-0ubuntu1.13

Ubuntu 14.04 LTS:
  libpoppler44                    0.24.5-2ubuntu4.17
  poppler-utils                   0.24.5-2ubuntu4.17

In general, a standard system update will make all the necessary
changes.

References

  https://ubuntu.com/security/notices/USN-3905-1

  CVE-2019-9200

Severity
critical
Lowest
Low
Medium
High
Critical

March 11, 2019

Package Information

  https://launchpad.net/ubuntu/+source/poppler/0.68.0-0ubuntu1.6
  https://launchpad.net/ubuntu/+source/poppler/0.62.0-2ubuntu2.8
  https://launchpad.net/ubuntu/+source/poppler/0.41.0-0ubuntu1.13
  https://launchpad.net/ubuntu/+source/poppler/0.24.5-2ubuntu4.17

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here