Alerts This Week
Warning Icon 1 659
Alerts This Week
Warning Icon 1 659

Stay Secure with the Latest Linux Advisories

Debianlts Large Esm H800
Debian LTS

Debian Dovecot High Severity Service Disruption Info Leak Flaw DLA-4617-1

Calendar White Jun 05, 2026
Important
Debianlts Large Esm H900
Debian LTS

Debian 11 gsasl Critical DoS Threat Advisory DLA-4618-1 CVE-2026-48829

Calendar White Jun 05, 2026
Critical
Suse Large Esm H900
SuSE

SUSE MozillaThunderbird Important Memory Safety Fix Advisory 2026-2271-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro 6.0 Ignition Key HTTP Transport Loop Patch 2026-21987-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.0 Important Libzypp Libsolv Security Update 2026-21988-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Google-Guest-Agent Important Security Update 2026-21989-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H800
SuSE

SUSE Linux Micro Important Salt Multi-Linux Manager Vuln 2026-21990-1

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro Critical Ignition Patch CVE-2026-33814

Calendar White Jun 05, 2026
Important
Suse Large Esm H900
SuSE

SUSE Linux Micro 6.1 Security Update for libzypp libsolv Key 2026-21992-1

Calendar White Jun 05, 2026
Important
Filter Icon Refine advisories
X Clear Filters
X Clear Filters
View More

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200
Loading...

Explore Latest Linux Security advisories

We found -4 articles for you...
100
Ls Advisories Suse Esm H240
Price Tag 1security advisorylow severityopenSUSE

SUSE: 2024:1980-1 Low Severity: Poppler Out-Of-Bounds Write

* bsc#1223375 Cross-References: * CVE-2024-4141 . # Security update for poppler Announcement ID: SUSE-SU-2024:1980-1 Rating: low References: * bsc#1223375 Cross-References: * CVE-2024-4141 CVSS scores: * CVE-2024-4141 ( SUSE ): 2.9 CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: * Basesystem Module 15-SP5 * openSUSE Leap 15.5 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP5 * SUSE Linux Enterprise Micro 5.5 * SUSE Linux Enterprise Real Time 15 SP5 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Package Hub 15 15-SP5 An update that solves one vulnerability can now be installed. ## Description: This update for poppler fixes the following issues: * CVE-2024-4141: Fixed out-of-bounds array write (bsc#1223375). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.5 zypper in -t patch SUSE-2024-1980=1 openSUSE-SLE-15.5-2024-1980=1 * Basesystem Module 15-SP5 zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP5-2024-1980=1 * SUSE Package Hub 15 15-SP5 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP5-2024-1980=1 ## Package List: * openSUSE Leap 15.5 (aarch64 ppc64le s390x x86_64 i586) * libpoppler-glib8-debuginfo-23.01.0-150500.3.8.1 * poppler-qt6-debugsource-23.01.0-150500.3.8.1 * libpoppler-glib-devel-23.01.0-150500.3.8.1 * libpoppler-qt5-1-debuginfo-23.01.0-150500.3.8.1 * libpoppler126-debuginfo-23.01.0-150500.3.8.1 * libpoppler-cpp0-debuginfo-23.01.0-150500.3.8.1 * poppler-tools-debuginfo-23.01.0-150500.3.8.1 * poppler-qt5-debugsource-23.01.0-150500.3.8.1 * libpoppler-qt5-devel-23.01.0-150500.3.8.1 * libpoppler-qt6-3-23.01.0-150500.3.8.1 * poppler-tools-23.01.0-150500.3.8.1 *libpoppler-qt6-3-debuginfo-23.01.0-150500.3.8.1 * libpoppler-qt6-devel-23.01.0-150500.3.8.1 * libpoppler-devel-23.01.0-150500.3.8.1 * libpoppler-cpp0-23.01.0-150500.3.8.1 * libpoppler126-23.01.0-150500.3.8.1 * libpoppler-qt5-1-23.01.0-150500.3.8.1 * typelib-1_0-Poppler-0_18-23.01.0-150500.3.8.1 * poppler-debugsource-23.01.0-150500.3.8.1 * libpoppler-glib8-23.01.0-150500.3.8.1 * openSUSE Leap 15.5 (x86_64) * libpoppler-qt5-1-32bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler126-32bit-23.01.0-150500.3.8.1 * libpoppler-cpp0-32bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler-glib8-32bit-23.01.0-150500.3.8.1 * libpoppler-cpp0-32bit-23.01.0-150500.3.8.1 * libpoppler-qt5-1-32bit-23.01.0-150500.3.8.1 * libpoppler126-32bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler-glib8-32bit-debuginfo-23.01.0-150500.3.8.1 * openSUSE Leap 15.5 (aarch64_ilp32) * libpoppler126-64bit-23.01.0-150500.3.8.1 * libpoppler126-64bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler-qt5-1-64bit-23.01.0-150500.3.8.1 * libpoppler-qt5-1-64bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler-glib8-64bit-23.01.0-150500.3.8.1 * libpoppler-cpp0-64bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler-glib8-64bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler-cpp0-64bit-23.01.0-150500.3.8.1 * Basesystem Module 15-SP5 (aarch64 ppc64le s390x x86_64) * libpoppler-glib8-debuginfo-23.01.0-150500.3.8.1 * libpoppler-glib-devel-23.01.0-150500.3.8.1 * libpoppler126-debuginfo-23.01.0-150500.3.8.1 * libpoppler-cpp0-debuginfo-23.01.0-150500.3.8.1 * poppler-tools-debuginfo-23.01.0-150500.3.8.1 * poppler-tools-23.01.0-150500.3.8.1 * libpoppler-devel-23.01.0-150500.3.8.1 * libpoppler-cpp0-23.01.0-150500.3.8.1 * libpoppler126-23.01.0-150500.3.8.1 * typelib-1_0-Poppler-0_18-23.01.0-150500.3.8.1 * poppler-debugsource-23.01.0-150500.3.8.1 * libpoppler-glib8-23.01.0-150500.3.8.1 * SUSE Package Hub 15 15-SP5 (aarch64 ppc64le s390x x86_64) *libpoppler-qt5-1-debuginfo-23.01.0-150500.3.8.1 * libpoppler-cpp0-debuginfo-23.01.0-150500.3.8.1 * poppler-qt5-debugsource-23.01.0-150500.3.8.1 * libpoppler-qt5-devel-23.01.0-150500.3.8.1 * libpoppler-devel-23.01.0-150500.3.8.1 * libpoppler-cpp0-23.01.0-150500.3.8.1 * libpoppler-qt5-1-23.01.0-150500.3.8.1 * poppler-debugsource-23.01.0-150500.3.8.1 * SUSE Package Hub 15 15-SP5 (x86_64) * libpoppler-glib8-32bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler126-32bit-23.01.0-150500.3.8.1 * libpoppler126-32bit-debuginfo-23.01.0-150500.3.8.1 * libpoppler-glib8-32bit-23.01.0-150500.3.8.1 ## References: * https://www.suse.com/security/cve/CVE-2024-4141.html * https://bugzilla.suse.com/show_bug.cgi?id=1223375 . SUSE releases a minor security patch for poppler tackling a buffer overflow vulnerability found in various offerings.. SUSE Update, poppler Security, SUSE Low Severity, Security Advisory, Linux Patch. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Jun 11, 2024 Low SuSE
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorymoderate severitycrash fix

openSUSE: 2023:4363-1 Moderate: Poppler DoS and Crash Threats

This update for poppler fixes the following issues: CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file (bsc#1214726).. # Security update for poppler Announcement ID: SUSE-SU-2023:4363-1 Rating: moderate References: * bsc#1213888 * bsc#1214726 Cross-References: * CVE-2022-37052 * CVE-2023-34872 CVSS scores: * CVE-2022-37052 ( NVD ): 6.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H * CVE-2023-34872 ( SUSE ): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L * CVE-2023-34872 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H Affected Products: * Basesystem Module 15-SP4 * openSUSE Leap 15.4 * SUSE Linux Enterprise Desktop 15 SP4 * SUSE Linux Enterprise Desktop 15 SP5 * SUSE Linux Enterprise High Performance Computing 15 SP4 * SUSE Linux Enterprise Micro 5.3 * SUSE Linux Enterprise Micro 5.4 * SUSE Linux Enterprise Real Time 15 SP4 * SUSE Linux Enterprise Server 15 SP4 * SUSE Linux Enterprise Server 15 SP5 * SUSE Linux Enterprise Server for SAP Applications 15 SP4 * SUSE Linux Enterprise Server for SAP Applications 15 SP5 * SUSE Linux Enterprise Workstation Extension 15 SP5 * SUSE Manager Proxy 4.3 * SUSE Manager Retail Branch Server 4.3 * SUSE Manager Server 4.3 * SUSE Package Hub 15 15-SP4 An update that solves two vulnerabilities can now be installed. ## Description: This update for poppler fixes the following issues: * CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file (bsc#1214726). * CVE-2023-34872: Fixed a remote denial-of-service in Outline.cc (bsc#1213888). ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.4 zypper in -t patch SUSE-2023-4363=1 openSUSE-SLE-15.4-2023-4363=1 * Basesystem Module 15-SP4 zypper in -t patchSUSE-SLE-Module-Basesystem-15-SP4-2023-4363=1 * SUSE Package Hub 15 15-SP4 zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP4-2023-4363=1 * SUSE Linux Enterprise Workstation Extension 15 SP5 zypper in -t patch SUSE-SLE-Product-WE-15-SP5-2023-4363=1 ## Package List: * openSUSE Leap 15.4 (aarch64 ppc64le s390x x86_64 i586) * poppler-debugsource-22.01.0-150400.3.16.1 * libpoppler-devel-22.01.0-150400.3.16.1 * libpoppler-glib8-debuginfo-22.01.0-150400.3.16.1 * libpoppler-qt6-3-debuginfo-22.01.0-150400.3.16.1 * libpoppler-qt6-devel-22.01.0-150400.3.16.1 * poppler-tools-debuginfo-22.01.0-150400.3.16.1 * libpoppler-cpp0-debuginfo-22.01.0-150400.3.16.1 * poppler-qt6-debugsource-22.01.0-150400.3.16.1 * poppler-tools-22.01.0-150400.3.16.1 * libpoppler-cpp0-22.01.0-150400.3.16.1 * poppler-qt5-debugsource-22.01.0-150400.3.16.1 * libpoppler117-debuginfo-22.01.0-150400.3.16.1 * libpoppler-qt6-3-22.01.0-150400.3.16.1 * libpoppler-glib8-22.01.0-150400.3.16.1 * libpoppler-qt5-1-22.01.0-150400.3.16.1 * libpoppler-glib-devel-22.01.0-150400.3.16.1 * libpoppler-qt5-1-debuginfo-22.01.0-150400.3.16.1 * libpoppler117-22.01.0-150400.3.16.1 * typelib-1_0-Poppler-0_18-22.01.0-150400.3.16.1 * libpoppler-qt5-devel-22.01.0-150400.3.16.1 * openSUSE Leap 15.4 (x86_64) * libpoppler-qt5-1-32bit-22.01.0-150400.3.16.1 * libpoppler117-32bit-debuginfo-22.01.0-150400.3.16.1 * libpoppler-cpp0-32bit-debuginfo-22.01.0-150400.3.16.1 * libpoppler-qt5-1-32bit-debuginfo-22.01.0-150400.3.16.1 * libpoppler-cpp0-32bit-22.01.0-150400.3.16.1 * libpoppler-glib8-32bit-debuginfo-22.01.0-150400.3.16.1 * libpoppler-glib8-32bit-22.01.0-150400.3.16.1 * libpoppler117-32bit-22.01.0-150400.3.16.1 * openSUSE Leap 15.4 (aarch64_ilp32) * libpoppler-glib8-64bit-22.01.0-150400.3.16.1 * libpoppler117-64bit-22.01.0-150400.3.16.1 * libpoppler-qt5-1-64bit-debuginfo-22.01.0-150400.3.16.1 *libpoppler-cpp0-64bit-debuginfo-22.01.0-150400.3.16.1 * libpoppler-qt5-1-64bit-22.01.0-150400.3.16.1 * libpoppler-cpp0-64bit-22.01.0-150400.3.16.1 * libpoppler117-64bit-debuginfo-22.01.0-150400.3.16.1 * libpoppler-glib8-64bit-debuginfo-22.01.0-150400.3.16.1 * Basesystem Module 15-SP4 (aarch64 ppc64le s390x x86_64) * poppler-debugsource-22.01.0-150400.3.16.1 * libpoppler-devel-22.01.0-150400.3.16.1 * libpoppler-glib8-debuginfo-22.01.0-150400.3.16.1 * poppler-tools-debuginfo-22.01.0-150400.3.16.1 * libpoppler-cpp0-debuginfo-22.01.0-150400.3.16.1 * poppler-tools-22.01.0-150400.3.16.1 * libpoppler-cpp0-22.01.0-150400.3.16.1 * libpoppler117-debuginfo-22.01.0-150400.3.16.1 * libpoppler-glib8-22.01.0-150400.3.16.1 * libpoppler-glib-devel-22.01.0-150400.3.16.1 * libpoppler117-22.01.0-150400.3.16.1 * typelib-1_0-Poppler-0_18-22.01.0-150400.3.16.1 * SUSE Package Hub 15 15-SP4 (aarch64 ppc64le s390x x86_64) * poppler-debugsource-22.01.0-150400.3.16.1 * libpoppler-devel-22.01.0-150400.3.16.1 * libpoppler-cpp0-debuginfo-22.01.0-150400.3.16.1 * libpoppler-cpp0-22.01.0-150400.3.16.1 * poppler-qt5-debugsource-22.01.0-150400.3.16.1 * libpoppler-qt5-1-22.01.0-150400.3.16.1 * libpoppler-qt5-1-debuginfo-22.01.0-150400.3.16.1 * libpoppler-qt5-devel-22.01.0-150400.3.16.1 * SUSE Package Hub 15 15-SP4 (x86_64) * libpoppler-glib8-32bit-22.01.0-150400.3.16.1 * libpoppler117-32bit-debuginfo-22.01.0-150400.3.16.1 * libpoppler117-32bit-22.01.0-150400.3.16.1 * libpoppler-glib8-32bit-debuginfo-22.01.0-150400.3.16.1 * SUSE Linux Enterprise Workstation Extension 15 SP5 (x86_64) * poppler-debugsource-22.01.0-150400.3.16.1 * libpoppler117-22.01.0-150400.3.16.1 * libpoppler117-debuginfo-22.01.0-150400.3.16.1 ## References: * https://www.suse.com/security/cve/CVE-2022-37052.html * https://www.suse.com/security/cve/CVE-2023-34872.html * https://bugzilla.suse.com/show_bug.cgi?id=1213888 *https://bugzilla.suse.com/show_bug.cgi?id=1214726 . A recent poppler update addresses stability concerns and denial-of-service vulnerabilities on various SUSE Linux distros, classified with moderate severity concerns.. Poppler Security Update, OpenSUSE Advisory, Crash Fix, DoS Resolution. . LinuxSecurity.com Team

Calendar 2 Nov 03, 2023 OpenSUSE
Banner 3 1028x280 1708121785 1771599793
202
Ls Advisories Opensuse Esm H240
Price Tag 1security advisorydenial of servicebuffer overflow

openSUSE Leap 15.3: 2021:3854-1 Critical: Poppler Denial Of Service

An update that fixes 21 vulnerabilities is now available. . openSUSE Security Update: Security update for poppler ______________________________________________________________________________ Announcement ID: openSUSE-SU-2021:3854-1 Rating: important References: #1092945 #1102531 #1107597 #1114966 #1115185 #1115186 #1115187 #1115626 #1120495 #1120496 #1120939 #1120956 #1124150 #1127329 #1129202 #1130229 #1131696 #1131722 #1142465 #1143950 #1179163 Cross-References: CVE-2017-18267 CVE-2018-13988 CVE-2018-16646 CVE-2018-18897 CVE-2018-19058 CVE-2018-19059 CVE-2018-19060 CVE-2018-19149 CVE-2018-20481 CVE-2018-20551 CVE-2018-20650 CVE-2018-20662 CVE-2019-10871 CVE-2019-10872 CVE-2019-14494 CVE-2019-7310 CVE-2019-9200 CVE-2019-9631 CVE-2019-9903 CVE-2019-9959 CVE-2020-27778 CVSS scores: CVE-2017-18267 (NVD) : 5.5 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2017-18267 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-13988 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-13988 (SUSE): 5.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2018-16646 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-16646 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-18897 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-18897 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-19058 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-19058 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-19059 (NVD) : 6.5CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-19059 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-19060 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-19060 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-19149 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-19149 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-20481 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20481 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-20551 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20551 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-20650 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20650 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2018-20662 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2018-20662 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2019-10871 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-10871 (SUSE): 4.4 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:L CVE-2019-10872 (NVD) : 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-10872 (SUSE): 4.4 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:L CVE-2019-14494 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2019-14494 (SUSE): 5.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L CVE-2019-7310 (NVD) : 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-9200 (NVD) : 8.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-9200 (SUSE): 7.8CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2019-9631 (NVD) : 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2019-9631 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2019-9903 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-9903 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2019-9959 (NVD) : 6.5 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVE-2019-9959 (SUSE): 3.3 CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVE-2020-27778 (NVD) : 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVE-2020-27778 (SUSE): 5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L Affected Products: openSUSE Leap 15.3 ______________________________________________________________________________ An update that fixes 21 vulnerabilities is now available. Description: This update for poppler fixes the following issues: - CVE-2017-18267: Fixed an infinite recursion that would allow remote attackers to cause a denial of service (bsc#1092945). - CVE-2018-13988: Added an improper implementation check which otherwise could allow buffer overflows, memory corruption, and denial of service (bsc#1102531). - CVE-2018-16646: Fixed an infinite recursion which could allow a denial-of-service attack via a specially crafted PDF file (bsc#1107597). - CVE-2018-18897: Fixed a memory leak (bsc#1114966). - CVE-2018-19058: Fixed a bug which could allow a denial-of-service attack via a specially crafted PDF file (bsc#1115187). - CVE-2018-19059: Fixed an out-of-bounds read access which could allow a denial-of-service attack (bsc#1115186). - CVE-2018-19060: Fixed a NULL pointer dereference which could allow a denial-of-service attack (bsc#1115185). - CVE-2018-19149: Fixed a NULL pointer dereference which could allow a denial-of-service attack (bsc#1115626). -CVE-2018-20481: Fixed a NULL pointer dereference while handling unallocated XRef entries which could allow a denial-of-service attack (bsc#1120495). - CVE-2018-20551: Fixed a reachable assertion which could allow a denial-of-service attack through specially crafted PDF files (bsc#1120496). - CVE-2018-20650: Fixed a reachable assertion which could allow denial-of-service through specially crafted PDF files (bsc#1120939). - CVE-2018-20662: Fixed a bug which could potentially crash the running process by SIGABRT resulting in a denial-of-service attack through a specially crafted PDF file (bsc#1120956). - CVE-2019-10871: Fixed a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDev.cc (bsc#1131696). - CVE-2019-10872: Fixed a heap-based buffer over-read in the function Splash::blitTransparent at splash/Splash.cc (bsc#1131722). - CVE-2019-14494: Fixed a divide-by-zero error in the function SplashOutputDev::tilingPatternFill (bsc#1143950). - CVE-2019-7310: Fixed a heap-based buffer over-read (due to an integer signedness error in the XRef::getEntry function in XRef.cc) that allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted PDF document (bsc#1124150). - CVE-2019-9200: Fixed a heap-based buffer underwrite which could allow denial-of-service attack through a specially crafted PDF file (bsc#1127329) - CVE-2019-9631: Fixed a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function (bsc#1129202). - CVE-2019-9903: Fixed excessive stack consumption in the Dict::find() method, which can be triggered by passing a crafted pdf file to the pdfunite binary (bsc#1130229). - CVE-2019-9959: Fixed integer overflow that made it possible to allocate a large memory chunk on the heap with a size controlled by an attacker (bsc#1142465). - CVE-2020-27778: Fixed buffer overflowvulnerability in pdftohtml (bsc#1179163). Patch Instructions: To install this openSUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: - openSUSE Leap 15.3: zypper in -t patch openSUSE-SLE-15.3-2021-3854=1 Package List: - openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64): libpoppler73-0.62.0-4.6.1 libpoppler73-debuginfo-0.62.0-4.6.1 - openSUSE Leap 15.3 (x86_64): libpoppler73-32bit-0.62.0-4.6.1 libpoppler73-32bit-debuginfo-0.62.0-4.6.1 References: https://www.suse.com/security/cve/CVE-2017-18267.html https://www.suse.com/security/cve/CVE-2018-13988.html https://www.suse.com/security/cve/CVE-2018-16646.html https://www.suse.com/security/cve/CVE-2018-18897.html https://www.suse.com/security/cve/CVE-2018-19058.html https://www.suse.com/security/cve/CVE-2018-19059.html https://www.suse.com/security/cve/CVE-2018-19060.html https://www.suse.com/security/cve/CVE-2018-19149.html https://www.suse.com/security/cve/CVE-2018-20481.html https://www.suse.com/security/cve/CVE-2018-20551.html https://www.suse.com/security/cve/CVE-2018-20650.html https://www.suse.com/security/cve/CVE-2018-20662.html https://www.suse.com/security/cve/CVE-2019-10871.html https://www.suse.com/security/cve/CVE-2019-10872.html https://https://www.suse.com/security/cve/CVE-2019-14494.html https://www.suse.com/security/cve/CVE-2019-7310.html https://www.suse.com/security/cve/CVE-2019-9200.html https://www.suse.com/security/cve/CVE-2019-9631.html https://www.suse.com/security/cve/CVE-2019-9903.html https://www.suse.com/security/cve/CVE-2019-9959.html https://www.suse.com/security/cve/CVE-2020-27778.html https://bugzilla.suse.com/1092945 https://bugzilla.suse.com/1102531 https://bugzilla.suse.com/1107597 https://bugzilla.suse.com/1114966 https://bugzilla.suse.com/1115185 https://bugzilla.suse.com/1115186 https://bugzilla.suse.com/1115187 https://bugzilla.suse.com/1115626 https://bugzilla.suse.com/1120495 https://bugzilla.suse.com/1120496 https://bugzilla.suse.com/1120939 https://bugzilla.suse.com/1120956 https://bugzilla.suse.com/1124150 https://bugzilla.suse.com/1127329 https://bugzilla.suse.com/1129202 https://bugzilla.suse.com/1130229 https://bugzilla.suse.com/1131696 https://bugzilla.suse.com/1131722 https://bugzilla.suse.com/1142465 https://bugzilla.suse.com/1143950 https://bugzilla.suse.com/1179163 . Significant Arch Linux patch for libraw fixes 15 vulnerabilities, boosting overall system performance and safeguarding against emerging risks.. openSUSE Update, Poppler Security, Buffer Overflow Fix, Memory Leak Patch. . Severity: Critical. LinuxSecurity.com Team

Calendar 2 Dec 01, 2021 Critical OpenSUSE
98
Ls Advisories Redhat Esm H240
Price Tag 1security advisoryRed Hat Enterprise Linuxlow severity

Red Hat: RHSA-2020-3977-01 Low: Evince And Poppler Security Update

An update for evince and poppler is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 ==================================================================== Red Hat Security Advisory Synopsis: Low: evince and poppler security and bug fix update Advisory ID: RHSA-2020:3977-01 Product: Red Hat Enterprise Linux Advisory URL: https://access.redhat.com/errata/RHSA-2020:3977 Issue date: 2020-09-29 CVE Names: CVE-2019-14494 ==================================================================== 1. Summary: An update for evince and poppler is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section. 2. Relevant releases/architectures: Red Hat Enterprise Linux Client (v. 7) - x86_64 Red Hat Enterprise Linux Client Optional (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode (v. 7) - x86_64 Red Hat Enterprise Linux ComputeNode Optional (v. 7) - x86_64 Red Hat Enterprise Linux Server (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Server Optional (v. 7) - ppc64, ppc64le, s390x, x86_64 Red Hat Enterprise Linux Workstation (v. 7) - x86_64 Red Hat Enterprise Linux Workstation Optional (v. 7) - x86_64 3. Description: The evince packages provide a simple multi-page document viewer for Portable Document Format (PDF), PostScript (PS), Encapsulated PostScript (EPS) files, and, with additional back-ends, also the Device Independent File format (DVI) files. Poppler is a Portable Document Format (PDF) rendering library, used by applications such as Evince. Security Fix(es): * poppler: divide-by-zero in functionSplashOutputDev::tilingPatternFill in SplashOutputDev.cc (CVE-2019-14494) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.9 Release Notes linked from the References section. 4. Solution: For details on how to apply this update, which includes the changes described in this advisory, refer to: https://access.redhat.com/articles/11258 5. Bugs fixed (https://bugzilla.redhat.com/): 1610436 - Gtk-CRITICALs when scrolling in thumbnails bar in large file 1797453 - CVE-2019-14494 poppler: divide-by-zero in function SplashOutputDev::tilingPatternFill in SplashOutputDev.cc 6. Package List: Red Hat Enterprise Linux Client (v. 7): Source: evince-3.28.2-10.el7.src.rpm poppler-0.26.5-43.el7.src.rpm x86_64: evince-3.28.2-10.el7.x86_64.rpm evince-debuginfo-3.28.2-10.el7.i686.rpm evince-debuginfo-3.28.2-10.el7.x86_64.rpm evince-dvi-3.28.2-10.el7.x86_64.rpm evince-libs-3.28.2-10.el7.i686.rpm evince-libs-3.28.2-10.el7.x86_64.rpm evince-nautilus-3.28.2-10.el7.x86_64.rpm poppler-0.26.5-43.el7.i686.rpm poppler-0.26.5-43.el7.x86_64.rpm poppler-debuginfo-0.26.5-43.el7.i686.rpm poppler-debuginfo-0.26.5-43.el7.x86_64.rpm poppler-glib-0.26.5-43.el7.i686.rpm poppler-glib-0.26.5-43.el7.x86_64.rpm poppler-qt-0.26.5-43.el7.i686.rpm poppler-qt-0.26.5-43.el7.x86_64.rpm poppler-utils-0.26.5-43.el7.x86_64.rpm Red Hat Enterprise Linux Client Optional (v.7): x86_64: evince-browser-plugin-3.28.2-10.el7.x86_64.rpm evince-debuginfo-3.28.2-10.el7.i686.rpm evince-debuginfo-3.28.2-10.el7.x86_64.rpm evince-devel-3.28.2-10.el7.i686.rpm evince-devel-3.28.2-10.el7.x86_64.rpm poppler-cpp-0.26.5-43.el7.i686.rpm poppler-cpp-0.26.5-43.el7.x86_64.rpm poppler-cpp-devel-0.26.5-43.el7.i686.rpm poppler-cpp-devel-0.26.5-43.el7.x86_64.rpm poppler-debuginfo-0.26.5-43.el7.i686.rpm poppler-debuginfo-0.26.5-43.el7.x86_64.rpm poppler-demos-0.26.5-43.el7.x86_64.rpm poppler-devel-0.26.5-43.el7.i686.rpm poppler-devel-0.26.5-43.el7.x86_64.rpm poppler-glib-devel-0.26.5-43.el7.i686.rpm poppler-glib-devel-0.26.5-43.el7.x86_64.rpm poppler-qt-devel-0.26.5-43.el7.i686.rpm poppler-qt-devel-0.26.5-43.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode (v. 7): Source: poppler-0.26.5-43.el7.src.rpm x86_64: poppler-0.26.5-43.el7.i686.rpm poppler-0.26.5-43.el7.x86_64.rpm poppler-debuginfo-0.26.5-43.el7.i686.rpm poppler-debuginfo-0.26.5-43.el7.x86_64.rpm poppler-qt-0.26.5-43.el7.i686.rpm poppler-qt-0.26.5-43.el7.x86_64.rpm poppler-utils-0.26.5-43.el7.x86_64.rpm Red Hat Enterprise Linux ComputeNode Optional (v. 7): x86_64: poppler-cpp-0.26.5-43.el7.i686.rpm poppler-cpp-0.26.5-43.el7.x86_64.rpm poppler-cpp-devel-0.26.5-43.el7.i686.rpm poppler-cpp-devel-0.26.5-43.el7.x86_64.rpm poppler-debuginfo-0.26.5-43.el7.i686.rpm poppler-debuginfo-0.26.5-43.el7.x86_64.rpm poppler-demos-0.26.5-43.el7.x86_64.rpm poppler-devel-0.26.5-43.el7.i686.rpm poppler-devel-0.26.5-43.el7.x86_64.rpm poppler-glib-0.26.5-43.el7.i686.rpm poppler-glib-0.26.5-43.el7.x86_64.rpm poppler-glib-devel-0.26.5-43.el7.i686.rpm poppler-glib-devel-0.26.5-43.el7.x86_64.rpm poppler-qt-devel-0.26.5-43.el7.i686.rpm poppler-qt-devel-0.26.5-43.el7.x86_64.rpm Red Hat Enterprise Linux Server (v.7): Source: evince-3.28.2-10.el7.src.rpm poppler-0.26.5-43.el7.src.rpm ppc64: evince-3.28.2-10.el7.ppc64.rpm evince-debuginfo-3.28.2-10.el7.ppc.rpm evince-debuginfo-3.28.2-10.el7.ppc64.rpm evince-dvi-3.28.2-10.el7.ppc64.rpm evince-libs-3.28.2-10.el7.ppc.rpm evince-libs-3.28.2-10.el7.ppc64.rpm evince-nautilus-3.28.2-10.el7.ppc64.rpm poppler-0.26.5-43.el7.ppc.rpm poppler-0.26.5-43.el7.ppc64.rpm poppler-debuginfo-0.26.5-43.el7.ppc.rpm poppler-debuginfo-0.26.5-43.el7.ppc64.rpm poppler-glib-0.26.5-43.el7.ppc.rpm poppler-glib-0.26.5-43.el7.ppc64.rpm poppler-utils-0.26.5-43.el7.ppc64.rpm ppc64le: evince-3.28.2-10.el7.ppc64le.rpm evince-debuginfo-3.28.2-10.el7.ppc64le.rpm evince-dvi-3.28.2-10.el7.ppc64le.rpm evince-libs-3.28.2-10.el7.ppc64le.rpm evince-nautilus-3.28.2-10.el7.ppc64le.rpm poppler-0.26.5-43.el7.ppc64le.rpm poppler-debuginfo-0.26.5-43.el7.ppc64le.rpm poppler-glib-0.26.5-43.el7.ppc64le.rpm poppler-qt-0.26.5-43.el7.ppc64le.rpm poppler-utils-0.26.5-43.el7.ppc64le.rpm s390x: evince-3.28.2-10.el7.s390x.rpm evince-debuginfo-3.28.2-10.el7.s390.rpm evince-debuginfo-3.28.2-10.el7.s390x.rpm evince-dvi-3.28.2-10.el7.s390x.rpm evince-libs-3.28.2-10.el7.s390.rpm evince-libs-3.28.2-10.el7.s390x.rpm evince-nautilus-3.28.2-10.el7.s390x.rpm poppler-0.26.5-43.el7.s390.rpm poppler-0.26.5-43.el7.s390x.rpm poppler-debuginfo-0.26.5-43.el7.s390.rpm poppler-debuginfo-0.26.5-43.el7.s390x.rpm poppler-glib-0.26.5-43.el7.s390.rpm poppler-glib-0.26.5-43.el7.s390x.rpm poppler-utils-0.26.5-43.el7.s390x.rpm x86_64: evince-3.28.2-10.el7.x86_64.rpm evince-debuginfo-3.28.2-10.el7.i686.rpm evince-debuginfo-3.28.2-10.el7.x86_64.rpm evince-dvi-3.28.2-10.el7.x86_64.rpm evince-libs-3.28.2-10.el7.i686.rpm evince-libs-3.28.2-10.el7.x86_64.rpm evince-nautilus-3.28.2-10.el7.x86_64.rpm poppler-0.26.5-43.el7.i686.rpm poppler-0.26.5-43.el7.x86_64.rpm poppler-debuginfo-0.26.5-43.el7.i686.rpm poppler-debuginfo-0.26.5-43.el7.x86_64.rpm poppler-glib-0.26.5-43.el7.i686.rpm poppler-glib-0.26.5-43.el7.x86_64.rpm poppler-qt-0.26.5-43.el7.i686.rpm poppler-qt-0.26.5-43.el7.x86_64.rpm poppler-utils-0.26.5-43.el7.x86_64.rpm Red Hat Enterprise Linux Server Optional (v.7): ppc64: evince-browser-plugin-3.28.2-10.el7.ppc64.rpm evince-debuginfo-3.28.2-10.el7.ppc.rpm evince-debuginfo-3.28.2-10.el7.ppc64.rpm evince-devel-3.28.2-10.el7.ppc.rpm evince-devel-3.28.2-10.el7.ppc64.rpm poppler-cpp-0.26.5-43.el7.ppc.rpm poppler-cpp-0.26.5-43.el7.ppc64.rpm poppler-cpp-devel-0.26.5-43.el7.ppc.rpm poppler-cpp-devel-0.26.5-43.el7.ppc64.rpm poppler-debuginfo-0.26.5-43.el7.ppc.rpm poppler-debuginfo-0.26.5-43.el7.ppc64.rpm poppler-demos-0.26.5-43.el7.ppc64.rpm poppler-devel-0.26.5-43.el7.ppc.rpm poppler-devel-0.26.5-43.el7.ppc64.rpm poppler-glib-devel-0.26.5-43.el7.ppc.rpm poppler-glib-devel-0.26.5-43.el7.ppc64.rpm poppler-qt-0.26.5-43.el7.ppc.rpm poppler-qt-0.26.5-43.el7.ppc64.rpm poppler-qt-devel-0.26.5-43.el7.ppc.rpm poppler-qt-devel-0.26.5-43.el7.ppc64.rpm ppc64le: evince-browser-plugin-3.28.2-10.el7.ppc64le.rpm evince-debuginfo-3.28.2-10.el7.ppc64le.rpm evince-devel-3.28.2-10.el7.ppc64le.rpm poppler-cpp-0.26.5-43.el7.ppc64le.rpm poppler-cpp-devel-0.26.5-43.el7.ppc64le.rpm poppler-debuginfo-0.26.5-43.el7.ppc64le.rpm poppler-demos-0.26.5-43.el7.ppc64le.rpm poppler-devel-0.26.5-43.el7.ppc64le.rpm poppler-glib-devel-0.26.5-43.el7.ppc64le.rpm poppler-qt-devel-0.26.5-43.el7.ppc64le.rpm s390x: evince-browser-plugin-3.28.2-10.el7.s390x.rpm evince-debuginfo-3.28.2-10.el7.s390.rpm evince-debuginfo-3.28.2-10.el7.s390x.rpm evince-devel-3.28.2-10.el7.s390.rpm evince-devel-3.28.2-10.el7.s390x.rpm poppler-cpp-0.26.5-43.el7.s390.rpm poppler-cpp-0.26.5-43.el7.s390x.rpm poppler-cpp-devel-0.26.5-43.el7.s390.rpm poppler-cpp-devel-0.26.5-43.el7.s390x.rpm poppler-debuginfo-0.26.5-43.el7.s390.rpm poppler-debuginfo-0.26.5-43.el7.s390x.rpm poppler-demos-0.26.5-43.el7.s390x.rpm poppler-devel-0.26.5-43.el7.s390.rpm poppler-devel-0.26.5-43.el7.s390x.rpm poppler-glib-devel-0.26.5-43.el7.s390.rpm poppler-glib-devel-0.26.5-43.el7.s390x.rpm poppler-qt-0.26.5-43.el7.s390.rpm poppler-qt-0.26.5-43.el7.s390x.rpm poppler-qt-devel-0.26.5-43.el7.s390.rpm poppler-qt-devel-0.26.5-43.el7.s390x.rpm x86_64: evince-browser-plugin-3.28.2-10.el7.x86_64.rpm evince-debuginfo-3.28.2-10.el7.i686.rpm evince-debuginfo-3.28.2-10.el7.x86_64.rpm evince-devel-3.28.2-10.el7.i686.rpm evince-devel-3.28.2-10.el7.x86_64.rpm poppler-cpp-0.26.5-43.el7.i686.rpm poppler-cpp-0.26.5-43.el7.x86_64.rpm poppler-cpp-devel-0.26.5-43.el7.i686.rpm poppler-cpp-devel-0.26.5-43.el7.x86_64.rpm poppler-debuginfo-0.26.5-43.el7.i686.rpm poppler-debuginfo-0.26.5-43.el7.x86_64.rpm poppler-demos-0.26.5-43.el7.x86_64.rpm poppler-devel-0.26.5-43.el7.i686.rpm poppler-devel-0.26.5-43.el7.x86_64.rpm poppler-glib-devel-0.26.5-43.el7.i686.rpm poppler-glib-devel-0.26.5-43.el7.x86_64.rpm poppler-qt-devel-0.26.5-43.el7.i686.rpm poppler-qt-devel-0.26.5-43.el7.x86_64.rpm Red Hat Enterprise Linux Workstation (v. 7): Source: evince-3.28.2-10.el7.src.rpm poppler-0.26.5-43.el7.src.rpm x86_64: evince-3.28.2-10.el7.x86_64.rpm evince-debuginfo-3.28.2-10.el7.i686.rpm evince-debuginfo-3.28.2-10.el7.x86_64.rpm evince-dvi-3.28.2-10.el7.x86_64.rpm evince-libs-3.28.2-10.el7.i686.rpm evince-libs-3.28.2-10.el7.x86_64.rpm evince-nautilus-3.28.2-10.el7.x86_64.rpm poppler-0.26.5-43.el7.i686.rpm poppler-0.26.5-43.el7.x86_64.rpm poppler-debuginfo-0.26.5-43.el7.i686.rpm poppler-debuginfo-0.26.5-43.el7.x86_64.rpm poppler-glib-0.26.5-43.el7.i686.rpm poppler-glib-0.26.5-43.el7.x86_64.rpm poppler-qt-0.26.5-43.el7.i686.rpm poppler-qt-0.26.5-43.el7.x86_64.rpm poppler-utils-0.26.5-43.el7.x86_64.rpm Red Hat Enterprise Linux Workstation Optional (v.7): x86_64: evince-browser-plugin-3.28.2-10.el7.x86_64.rpm evince-debuginfo-3.28.2-10.el7.i686.rpm evince-debuginfo-3.28.2-10.el7.x86_64.rpm evince-devel-3.28.2-10.el7.i686.rpm evince-devel-3.28.2-10.el7.x86_64.rpm poppler-cpp-0.26.5-43.el7.i686.rpm poppler-cpp-0.26.5-43.el7.x86_64.rpm poppler-cpp-devel-0.26.5-43.el7.i686.rpm poppler-cpp-devel-0.26.5-43.el7.x86_64.rpm poppler-debuginfo-0.26.5-43.el7.i686.rpm poppler-debuginfo-0.26.5-43.el7.x86_64.rpm poppler-demos-0.26.5-43.el7.x86_64.rpm poppler-devel-0.26.5-43.el7.i686.rpm poppler-devel-0.26.5-43.el7.x86_64.rpm poppler-glib-devel-0.26.5-43.el7.i686.rpm poppler-glib-devel-0.26.5-43.el7.x86_64.rpm poppler-qt-devel-0.26.5-43.el7.i686.rpm poppler-qt-devel-0.26.5-43.el7.x86_64.rpm These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from https://access.redhat.com/security/team/key/ 7. References: https://access.redhat.com/security/cve/CVE-2019-14494 https://access.redhat.com/security/updates/classification/#low https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index 8. Contact: The Red Hat security contact is . More contact details at https://access.redhat.com/security/team/contact/ Copyright 2020 Red Hat, Inc. -----BEGIN PGP SIGNATURE----- Version: GnuPGv1 iQIVAwUBX3OjytzjgjWX9erEAQg+WA//S9AxwyBHWq+hF+Bc8D7jLcma3rKBIJFY apkbmTL5CwKLV9DbFlryslfveYDMimhBEcHvGLqr+BjVUT2UamHv0vw1Fly7agJl ZnY4TS2Rc2/JJonqT61zH4NoCHrsMs47nnRXF6wAGVbNiG7GSdDYT8hcGKP8PAPo pW2S8BS+WEx99TmGZ4IMaf5NMEb9nVg8tKKpdcSLDaoxYYzTuY5dhnvxcDkAMDd4 eaN+9rpBBggtJsNCwq4QexVwwx2Ocl9KSPZyE6xpnpZkbDss8LerhvLr3HKKzJbM rwxWM87pfm/rVOuxXSLcOr9bNl+rv8eOeyx5tvClndcn41FayBlDGgrPw05GU+uP I6do8v7s+5dWNOYyIvxUb/qbB1/Sq3yHX17iQ7XmglQ1P7qqhhxQaFG26/tNhCnP UfkwK0EATl1EAMVQvyKVxQ5jiLS/i92YA/X4lHZHmgGLPbjYUKvxg3Enn5tZ1iP1 acSl6/tMfKdipWALKB62rSFjW3+ZFsWLeDlSA+BahPZVPJcvnuNU09JyUVwOrj/x dS9IAElPF1h/fQ1WnhIAf7Assh9sNJv4Ps4hd0cRWi1YfS8tkb55niLQk1fEfmFW WesSFDbLpqx/O5nfZQiyfgzrgSh/kH+0ekkQTFBA4hdMXiqBtdnEbgVbPV+wAnJA nIByLudtUGk=bPOk -----END PGP SIGNATURE----- -- RHSA-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . New security patch released for Evince and Poppler in Red Hat. Minor risk mitigated from vulnerabilities. Urgent response recommended.. Evince Update, Poppler Security, Red Hat Enterprise, Linux Update, Security Fix. . Severity: Low. LinuxSecurity.com Team

Calendar 2 Sep 29, 2020 Low Red Hat
Banner 3 1028x280 1708121785 1771599793
199
Ls Advisories Centos Esm H240
Price Tag 1security advisorysecurity patchpackage management

CentOS 6: CESA-2017-2550 Moderate: Poppler Package Updates and Fixes

Upstream details at : https://access.redhat.com/errata/RHSA-2017:2550. CentOS Errata and Security Advisory 2017:2550 Moderate Upstream details at : https://access.redhat.com/errata/RHSA-2017:2550 The following updated files have been uploaded and are currently syncing to the mirrors: ( sha256sum Filename ) i386: 5e00e48b8c0ac31de59d24deaa04247cc665a39827832cfac05df03c164c52c4 poppler-0.12.4-12.el6_9.i686.rpm d25cdcfbfc0bf8ef7f5e548984674c6ce2a8d6a2eaef784b1ea7767840690466 poppler-devel-0.12.4-12.el6_9.i686.rpm 94011927f19dd72b17214ea203338a17c4e75507543666097b0d7244860da132 poppler-glib-0.12.4-12.el6_9.i686.rpm 23425ddf68356964411efc36159173c6ae243d0eb237dce6361e582d2baa9e97 poppler-glib-devel-0.12.4-12.el6_9.i686.rpm f88d5fb1cb327fb9dacc48f2ab02cc12ac09ea043622e39b4eb34ec33088cd76 poppler-qt-0.12.4-12.el6_9.i686.rpm d201890924ed934ca293d1a88c1a7da78be176166099574c7858c60f3ee93c6e poppler-qt4-0.12.4-12.el6_9.i686.rpm 8d645831a8fac15e1c8e5a32fc9183e95713f9ef1ee561af2d1cc7d11bd705fc poppler-qt4-devel-0.12.4-12.el6_9.i686.rpm 5b88d65fe039f4b9f2ea41faeaa59c35ee0e10a6c24bbf1756f5a9ea6fb0a8f0 poppler-qt-devel-0.12.4-12.el6_9.i686.rpm 59ca913a180b4fd587d4479b64efa37f04c1ee5b6812d17319f69e9cc38d5807 poppler-utils-0.12.4-12.el6_9.i686.rpm x86_64: 5e00e48b8c0ac31de59d24deaa04247cc665a39827832cfac05df03c164c52c4 poppler-0.12.4-12.el6_9.i686.rpm 2a7c924303b93c19268086f7202cd4d147d54ba04b4d5e9c31f785c887d0f3ff poppler-0.12.4-12.el6_9.x86_64.rpm d25cdcfbfc0bf8ef7f5e548984674c6ce2a8d6a2eaef784b1ea7767840690466 poppler-devel-0.12.4-12.el6_9.i686.rpm df823b5d17233bc08e976918b1aeb8d16d88e40c8de95da56c6ad9d22cde0f03 poppler-devel-0.12.4-12.el6_9.x86_64.rpm 94011927f19dd72b17214ea203338a17c4e75507543666097b0d7244860da132 poppler-glib-0.12.4-12.el6_9.i686.rpm aaa7b0ad900a0f1b77a503bed3772ca8f8d5cc9299be07eba849d67fff67f21a poppler-glib-0.12.4-12.el6_9.x86_64.rpm 23425ddf68356964411efc36159173c6ae243d0eb237dce6361e582d2baa9e97 poppler-glib-devel-0.12.4-12.el6_9.i686.rpm 77a0cf7d64625bd9547bde17cee820eb1c12c4d153cc92dd1f3edd2afc5113bb poppler-glib-devel-0.12.4-12.el6_9.x86_64.rpm f88d5fb1cb327fb9dacc48f2ab02cc12ac09ea043622e39b4eb34ec33088cd76 poppler-qt-0.12.4-12.el6_9.i686.rpm 29d53b90f6ca5ba1ea401ae122c4ff987a20aa8accfa019f3a9afbb25bb24b46 poppler-qt-0.12.4-12.el6_9.x86_64.rpm d201890924ed934ca293d1a88c1a7da78be176166099574c7858c60f3ee93c6e poppler-qt4-0.12.4-12.el6_9.i686.rpm b411d564f12f72a171e5dfb7a15ed32b276afc23b86ce0799aebd2e3400006cf poppler-qt4-0.12.4-12.el6_9.x86_64.rpm 8d645831a8fac15e1c8e5a32fc9183e95713f9ef1ee561af2d1cc7d11bd705fc poppler-qt4-devel-0.12.4-12.el6_9.i686.rpm 6935fc562c03523283368b0ac587bbc9d98b8ec84006d4991d2e3b243157a134 poppler-qt4-devel-0.12.4-12.el6_9.x86_64.rpm 5b88d65fe039f4b9f2ea41faeaa59c35ee0e10a6c24bbf1756f5a9ea6fb0a8f0 poppler-qt-devel-0.12.4-12.el6_9.i686.rpm 2ce55815fe0011187173d93bba74e0f4fc0c01b5b2b4800081c27d54c659b654 poppler-qt-devel-0.12.4-12.el6_9.x86_64.rpm e75d1d7531bd8ff24932c7ed58fb34b24d9cb1913a3642887e42f441f1725b5d poppler-utils-0.12.4-12.el6_9.x86_64.rpm Source: 8f9a5f707bf29ee83b8e38b90cf211b01a841591e47fd5848061d37fddf66669 poppler-0.12.4-12.el6_9.src.rpm -- Johnny Hughes CentOS Project { https://www.centos.org/ } irc: hughesjr, #This email address is being protected from spambots. You need JavaScript enabled to view it. Twitter: @JohnnyCentOS _______________________________________________ CentOS-announce mailing list This email address is being protected from spambots. You need JavaScript enabled to view it. . Moderate security notice for CentOS 6 pertaining to updates on the poppler package. Please assess the upstream information and the patches provided.. CentOS Security, Poppler Update, Moderate Advisory, Security Patch, Package Management. . LinuxSecurity.com Team

Calendar 2 Aug 31, 2017 CentOS
News Add Esm H240

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Community Poll

More Polls

What got you started with Linux?

No answer selected. Please try again.
Please select either existing option or enter your own, however not both.
Please select minimum {0} answer(s).
Please select maximum {0} answer(s).
/main-polls/150-what-got-you-started-with-linux?task=poll.vote&format=json
150
radio
0
[{"id":483,"title":"Self-taught through trial and error","votes":545,"type":"x","order":1,"pct":78.42,"resources":[]},{"id":484,"title":"Formal training or courses","votes":30,"type":"x","order":2,"pct":4.32,"resources":[]},{"id":485,"title":"A job that required it","votes":34,"type":"x","order":3,"pct":4.89,"resources":[]},{"id":486,"title":"Other","votes":86,"type":"x","order":4,"pct":12.37,"resources":[]}] ["#ff5b00","#4ac0f2","#b80028","#eef66c","#60bb22","#b96a9a","#62c2cc"] ["rgba(255,91,0,0.7)","rgba(74,192,242,0.7)","rgba(184,0,40,0.7)","rgba(238,246,108,0.7)","rgba(96,187,34,0.7)","rgba(185,106,154,0.7)","rgba(98,194,204,0.7)"] 350
bottom 200

Search Topics

Your message here