poppler 0.74.0-0ubuntu1.2 source package in Ubuntu

Changelog

poppler (0.74.0-0ubuntu1.2) disco-security; urgency=medium

  * SECURITY UPDATE: DoS via crafted PDF file
    - debian/patches/CVE-2018-20662.patch: check XRef's Catalog for being a
      Dict in utils/pdfunite.cc.
    - CVE-2018-20662
  * SECURITY UPDATE: buffer underwrite in ImageStream::getLine()
    - debian/patches/CVE-2019-9200.patch: add check to poppler/Stream.cc.
    - CVE-2019-9200
  * SECURITY UPDATE: buffer over-read in downsample_row_box_filter
    - debian/patches/CVE-2019-9631-1.patch: compute correct coverage values
      for box filter in poppler/CairoRescaleBox.cc.
    - debian/patches/CVE-2019-9631-2.patch: constrain number of cycles in
      rescale filter in poppler/CairoRescaleBox.cc.
    - CVE-2019-9631
  * SECURITY UPDATE: dict marking mishandling
    - debian/patches/CVE-2019-9903.patch: fix stack overflow on broken file
      in poppler/PDFDoc.cc.
    - CVE-2019-9903
  * SECURITY UPDATE: heap-based buffer over-read
    - debian/patches/CVE-2019-10872.patch: restrict filling of overlapping
      boxes in splash/Splash.cc.
    - CVE-2019-10872
  * SECURITY UPDATE: NULL pointer dereference in SplashClip::clipAALine
    - debian/patches/CVE-2019-10873.patch: make sure the index of
      allIntersections we access is valid in splash/SplashXPathScanner.cc.
    - CVE-2019-10873
  * SECURITY UPDATE: buffer over-read in JPXStream::init
    - debian/patches/CVE-2019-12293.patch: fail gracefully if not all
      components have the same WxH in poppler/JPEG2000Stream.cc.
    - CVE-2019-12293

 -- Marc Deslauriers <email address hidden>  Wed, 26 Jun 2019 07:16:49 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2019-06-26
Uploaded to:
Disco
Original maintainer:
Ubuntu Developers
Architectures:
any all
Section:
devel
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
poppler_0.74.0.orig.tar.xz 1.4 MiB 92e09fd3302567fd36146b36bb707db43ce436e8841219025a82ea9fb0076b2f
poppler_0.74.0-0ubuntu1.2.debian.tar.xz 38.0 KiB 7b9ee0e2e5c17e99018e3bd88883ae9dea437e6b2c6fff0e9144bdb05388ac43
poppler_0.74.0-0ubuntu1.2.dsc 3.3 KiB 61af0f7ef65019bdb0dc20f017616a8204681610bb9f8fd62bbe843900e16053

Available diffs

View changes file

Binary packages built by this source

gir1.2-poppler-0.18: GObject introspection data for poppler-glib

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains introspection data for poppler-glib.
 .
 It can be used by packages using the GIRepository format to generate
 dynamic bindings.

libpoppler-cpp-dev: PDF rendering library -- development files (CPP interface)

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains the headers and development libraries needed to
 build applications using the C++ Poppler interface.

libpoppler-cpp0v5: PDF rendering library (CPP shared library)

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package provides the CPP shared library for applications
 using a simple C++ interface (using STL, and no other dependency) to Poppler.

libpoppler-cpp0v5-dbgsym: debug symbols for libpoppler-cpp0v5
libpoppler-dev: PDF rendering library -- development files

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains the development libraries needed to build applications
 using Poppler.

libpoppler-glib-dev: PDF rendering library -- development files (GLib interface)

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains the headers and development libraries needed to
 build applications using the GLib-based Poppler interface.

libpoppler-glib-doc: PDF rendering library -- documentation for the GLib interface

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains the API documentation of the GLib-based Poppler
 interface.

libpoppler-glib8: PDF rendering library (GLib-based shared library)

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package provides the GLib-based shared library for applications
 using the GLib interface to Poppler.

libpoppler-glib8-dbgsym: debug symbols for libpoppler-glib8
libpoppler-private-dev: PDF rendering library -- private development files

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains the private and unstable headers needed to build
 applications using the private Poppler core library.

libpoppler-qt5-1: PDF rendering library (Qt 5 based shared library)

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package provides the Qt 5 based shared library for applications
 using the Qt 5 interface to Poppler.

libpoppler-qt5-1-dbgsym: debug symbols for libpoppler-qt5-1
libpoppler-qt5-dev: PDF rendering library -- development files (Qt 5 interface)

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains the headers and development libraries needed to
 build applications using the Qt 5-based Poppler interface.

libpoppler85: PDF rendering library

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains the shared core library.

libpoppler85-dbgsym: debug symbols for libpoppler85
poppler-utils: PDF utilities (based on Poppler)

 Poppler is a PDF rendering library based on Xpdf PDF viewer.
 .
 This package contains command line utilities (based on Poppler) for getting
 information of PDF documents, convert them to other formats, or manipulate
 them:
  * pdfdetach -- lists or extracts embedded files (attachments)
  * pdffonts -- font analyzer
  * pdfimages -- image extractor
  * pdfinfo -- document information
  * pdfseparate -- page extraction tool
  * pdfsig -- verifies digital signatures
  * pdftocairo -- PDF to PNG/JPEG/PDF/PS/EPS/SVG converter using Cairo
  * pdftohtml -- PDF to HTML converter
  * pdftoppm -- PDF to PPM/PNG/JPEG image converter
  * pdftops -- PDF to PostScript (PS) converter
  * pdftotext -- text extraction
  * pdfunite -- document merging tool

poppler-utils-dbgsym: debug symbols for poppler-utils