Format: 1.8 Date: Wed, 26 Jun 2019 07:16:49 -0400 Source: poppler Binary: gir1.2-poppler-0.18 libpoppler-cpp-dev libpoppler-cpp0v5 libpoppler-dev libpoppler-glib-dev libpoppler-glib8 libpoppler-private-dev libpoppler-qt5-1 libpoppler-qt5-dev libpoppler85 poppler-utils Architecture: s390x Version: 0.74.0-0ubuntu1.2 Distribution: disco Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: gir1.2-poppler-0.18 - GObject introspection data for poppler-glib libpoppler-cpp-dev - PDF rendering library -- development files (CPP interface) libpoppler-cpp0v5 - PDF rendering library (CPP shared library) libpoppler-dev - PDF rendering library -- development files libpoppler-glib-dev - PDF rendering library -- development files (GLib interface) libpoppler-glib8 - PDF rendering library (GLib-based shared library) libpoppler-private-dev - PDF rendering library -- private development files libpoppler-qt5-1 - PDF rendering library (Qt 5 based shared library) libpoppler-qt5-dev - PDF rendering library -- development files (Qt 5 interface) libpoppler85 - PDF rendering library poppler-utils - PDF utilities (based on Poppler) Changes: poppler (0.74.0-0ubuntu1.2) disco-security; urgency=medium . * SECURITY UPDATE: DoS via crafted PDF file - debian/patches/CVE-2018-20662.patch: check XRef's Catalog for being a Dict in utils/pdfunite.cc. - CVE-2018-20662 * SECURITY UPDATE: buffer underwrite in ImageStream::getLine() - debian/patches/CVE-2019-9200.patch: add check to poppler/Stream.cc. - CVE-2019-9200 * SECURITY UPDATE: buffer over-read in downsample_row_box_filter - debian/patches/CVE-2019-9631-1.patch: compute correct coverage values for box filter in poppler/CairoRescaleBox.cc. - debian/patches/CVE-2019-9631-2.patch: constrain number of cycles in rescale filter in poppler/CairoRescaleBox.cc. - CVE-2019-9631 * SECURITY UPDATE: dict marking mishandling - debian/patches/CVE-2019-9903.patch: fix stack overflow on broken file in poppler/PDFDoc.cc. - CVE-2019-9903 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2019-10872.patch: restrict filling of overlapping boxes in splash/Splash.cc. - CVE-2019-10872 * SECURITY UPDATE: NULL pointer dereference in SplashClip::clipAALine - debian/patches/CVE-2019-10873.patch: make sure the index of allIntersections we access is valid in splash/SplashXPathScanner.cc. - CVE-2019-10873 * SECURITY UPDATE: buffer over-read in JPXStream::init - debian/patches/CVE-2019-12293.patch: fail gracefully if not all components have the same WxH in poppler/JPEG2000Stream.cc. - CVE-2019-12293 Checksums-Sha1: d8e446951dceaa294794e1204ac36dbcf545ba1c 19560 gir1.2-poppler-0.18_0.74.0-0ubuntu1.2_s390x.deb e6b90e094aac00a79f2df59e9e3be6a48da9397e 10116 libpoppler-cpp-dev_0.74.0-0ubuntu1.2_s390x.deb aec8fa5293b0ba2c2eb51184b345bb219cfd01e1 912768 libpoppler-cpp0v5-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb e10488e22c6466be17db6a9b19d919f37681023b 34196 libpoppler-cpp0v5_0.74.0-0ubuntu1.2_s390x.deb 1a7fe3642cafbffdd68531eb5399277911092943 5116 libpoppler-dev_0.74.0-0ubuntu1.2_s390x.deb 8736a4ffecf9622bab2aef64a0ef042f2a2911c2 57796 libpoppler-glib-dev_0.74.0-0ubuntu1.2_s390x.deb 90153d8feda47fef6a28dba6dcc27e6ae99a56d0 1743928 libpoppler-glib8-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb babae79d9858b84869b0984656ea5f8cb274dbe7 97948 libpoppler-glib8_0.74.0-0ubuntu1.2_s390x.deb 1fc5b29634fa1b83f662e47b770d6dc254b4a72f 174228 libpoppler-private-dev_0.74.0-0ubuntu1.2_s390x.deb 30efb5b50c6184f20a379b31260eafba3ad609b2 4789844 libpoppler-qt5-1-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb f6a3f3d03fe5cb9059c2cbf60a1d48e80b4a3df6 134056 libpoppler-qt5-1_0.74.0-0ubuntu1.2_s390x.deb a7e8df73838eeef63b2db7766e91a0d0616e0cd0 34768 libpoppler-qt5-dev_0.74.0-0ubuntu1.2_s390x.deb d8a66f5be8d4ec1248a94eaab57a11c82dc12b5e 8020408 libpoppler85-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb eca86bac9ef2aae72321dd78ffce846061821914 813696 libpoppler85_0.74.0-0ubuntu1.2_s390x.deb fd6f139867ba315b9571452a4ba379450b52983e 3032744 poppler-utils-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb 3e40650ab9e8f3934c2f40aab45f6b93bd2c91aa 153052 poppler-utils_0.74.0-0ubuntu1.2_s390x.deb f13b5d4f9850f7abbd9066762bcf2ddbd6338f31 18357 poppler_0.74.0-0ubuntu1.2_s390x.buildinfo Checksums-Sha256: 3ab9df09abaaa93868ba8138ff3d87a3ffaac31051839f42705a5cd345ca1378 19560 gir1.2-poppler-0.18_0.74.0-0ubuntu1.2_s390x.deb f26cdfdf5c8a99c95f4f92542572ce8c0cf986e107a4465098a05e226ce4bd6a 10116 libpoppler-cpp-dev_0.74.0-0ubuntu1.2_s390x.deb de8d4bc743bf90d32dfc470c9c752bc69a18686f388a36931d31c6d5e65c3074 912768 libpoppler-cpp0v5-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb cd7ba2e5e9aa2135b3cd0f085caf41923c5e59b8accb4eda075b0371f5602b11 34196 libpoppler-cpp0v5_0.74.0-0ubuntu1.2_s390x.deb 88ad432fe66857945d3ef8bcb36be0824a9397a8e85eca68fba639618d0e2e1c 5116 libpoppler-dev_0.74.0-0ubuntu1.2_s390x.deb 109b9ece0f537370b02c0b5fd0ccf3fe773741d96c14123e0c46b46c2bafc4f9 57796 libpoppler-glib-dev_0.74.0-0ubuntu1.2_s390x.deb cab40fb9a135779da9edd1542af95bb05c16edaf8c383326f66b07e0de78dd8c 1743928 libpoppler-glib8-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb 7491af1cf8a6bf197e4e5b41948f7bd42056b399d41fbf8f8e5f4ed82456fc61 97948 libpoppler-glib8_0.74.0-0ubuntu1.2_s390x.deb 2b35abb883d8a4db04116f80b0f1b6af78312a2279cebb10c02e8ae8cc29075a 174228 libpoppler-private-dev_0.74.0-0ubuntu1.2_s390x.deb d43cc0f826be92d728b6ff5d61b83d0ce20070823693bdc9718a70abbe91fee2 4789844 libpoppler-qt5-1-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb 4ccad4f45cde0d6b364fdb4862dd6c74554bb5179294c0fc324c3aa96bc78a43 134056 libpoppler-qt5-1_0.74.0-0ubuntu1.2_s390x.deb dc6b2b99d88d74af01a06d4e35fcb23b0eee4ce25d428f964d39d16f198ff81e 34768 libpoppler-qt5-dev_0.74.0-0ubuntu1.2_s390x.deb 4f8b9470867239255d30b63cfb9367a12a22d31406b6800604e63002ab2b4de4 8020408 libpoppler85-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb c98f235199fa6524945ee3e330c4f71edff2b2996da8ebdd1d65fc4f773a75fc 813696 libpoppler85_0.74.0-0ubuntu1.2_s390x.deb 28a22563769746e35149a462c55486c769f68b361230d520a250d4b38ec6cccd 3032744 poppler-utils-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb 3bf064d03387be0cd4399e0d481858a08f2917bbc19841c9ce0d054d55917500 153052 poppler-utils_0.74.0-0ubuntu1.2_s390x.deb f08e725b79ec090883a61790ea0f29149d58ed7aa4526e0084bcf91a33d0ecc3 18357 poppler_0.74.0-0ubuntu1.2_s390x.buildinfo Files: 56d74e8650e9fcb1d27240453eafe7d3 19560 introspection optional gir1.2-poppler-0.18_0.74.0-0ubuntu1.2_s390x.deb cfe6abd7729e890150e65a768c406a8d 10116 libdevel optional libpoppler-cpp-dev_0.74.0-0ubuntu1.2_s390x.deb 2ea6cd17d479f1a258c0e29d067e24b7 912768 debug optional libpoppler-cpp0v5-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb a9be6df67dd4585a53cd26e1619b2745 34196 libs optional libpoppler-cpp0v5_0.74.0-0ubuntu1.2_s390x.deb d4c68a84cf9e6f88262bd7189a5ac820 5116 libdevel optional libpoppler-dev_0.74.0-0ubuntu1.2_s390x.deb 51236406a17825991ba7f45dc69919ba 57796 libdevel optional libpoppler-glib-dev_0.74.0-0ubuntu1.2_s390x.deb ca924de263cbd788b2aaa6504c330992 1743928 debug optional libpoppler-glib8-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb 5f0cda9b7a06e913fd3b9fd4929f8c9d 97948 libs optional libpoppler-glib8_0.74.0-0ubuntu1.2_s390x.deb 9fea16f08805a3f266c725526b7666c4 174228 libdevel optional libpoppler-private-dev_0.74.0-0ubuntu1.2_s390x.deb 083461ec1ceefefae66c55a907c5ad8c 4789844 debug optional libpoppler-qt5-1-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb 7db4ee45100465e59004f51e7ff94eb1 134056 libs optional libpoppler-qt5-1_0.74.0-0ubuntu1.2_s390x.deb 96a15523088a5b5cddb58c026a76fd75 34768 libdevel optional libpoppler-qt5-dev_0.74.0-0ubuntu1.2_s390x.deb 1d9727a2ab0ef5df7a89991a38d7e4f9 8020408 debug optional libpoppler85-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb 534c01f68f9e19d9f7b0cf3fd0933d65 813696 libs optional libpoppler85_0.74.0-0ubuntu1.2_s390x.deb ea8af99ce12e528b2a6713ff7daedde4 3032744 debug optional poppler-utils-dbgsym_0.74.0-0ubuntu1.2_s390x.ddeb 68eeb823ab381649e943cab879dbfa48 153052 utils optional poppler-utils_0.74.0-0ubuntu1.2_s390x.deb d0deff81df06baa07f2d6782144b3fd6 18357 devel optional poppler_0.74.0-0ubuntu1.2_s390x.buildinfo Original-Maintainer: Debian freedesktop.org maintainers