File _patchinfo of Package patchinfo.29743

Overview Repositories Revisions Requests Users Attributes Meta

File _patchinfo of Package patchinfo.29743

<patchinfo incident="29743">
  <issue tracker="cve" id="2022-27337"/>
  <issue tracker="cve" id="2018-21009"/>
  <issue tracker="cve" id="2019-12293"/>
  <issue tracker="bnc" id="1136105">VUL-1: CVE-2019-12293: poppler: heap-based buffer over-read in JPXStream:init in JPEG2000Stream.cc via data with inconsistent heights or widths</issue>
  <issue tracker="bnc" id="1199272">VUL-1: CVE-2022-27337: poppler,poppler-qt: A logic error in the Hints::Hints function can cause denial of service</issue>
  <issue tracker="bnc" id="1149635">VUL-1: CVE-2018-21009: xpdf,poppler: integer overflow in Parser:makeStream in Parser.cc.</issue>
  <packager>pgajdos</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for poppler</summary>
  <description>This update for poppler fixes the following issues:

- CVE-2022-27337: Fixed a logic error in the Hints::Hints function which can cause denial of service (bsc#1199272).
  - CVE-2018-21009: Fixed integer overflow in Parser:makeStream in Parser.cc (bsc#1149635).
  - CVE-2019-12293: Fixed heap-based buffer over-read in JPXStream:init in JPEG2000Stream.cc (bsc#1136105).
</description>
</patchinfo>

Places

File _patchinfo of Package patchinfo.29743

Places