Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

Ubuntu 22.04 LTS: 6281-3 Moderate: ImageMagick Security Vulnerability

ubuntu
Calendar Grey August 3, 2023
Dist Ubuntu Esm H88
Recent Poppler vulnerabilities identified in Ubuntu pose significant crash risks. Detailed update instructions are available for the impacted versions.
poppler could be made to crash if it opened a specially crafted file.

Summary

poppler could be made to crash if it opened a specially crafted file.

Software Description:

- poppler: PDF rendering library

Details:

Jieyong Ma discovered that poppler incorrectly handled certain malformed

PDF files. A remote attacker could possibly use this issue to cause poppler

to crash, resulting in a denial of service. This issue only affected Ubuntu

20.04 LTS and Ubuntu 22.04 LTS. (CVE-2022-27337)

It was discovered that poppler incorrectly handled certain malformed PDF

files. A remote attacker could possibly use this issue to cause poppler to

crash, resulting in a denial of service. This issue only affected Ubuntu

22.04 LTS and Ubuntu 23.04. (CVE-2023-34872)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 23.04:
   libpoppler126                   22.12.0-2ubuntu1.1

Ubuntu 22.04 LTS:
   libpoppler118                   22.02.0-2ubuntu0.2

Ubuntu 20.04 LTS:
   libpoppler97                    0.86.1-0ubuntu1.2

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-6273-1

CVE-2022-27337, CVE-2023-34872

Severity
important
Lowest
Low
Medium
High
Critical

Ubuntu Security Notice USN-6273-1

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here