Debian alert DLA-1074-1 (poppler)
| From: | Emilio Pozuelo Monfort <pochu@debian.org> | |
| To: | debian-lts-announce@lists.debian.org | |
| Subject: | [SECURITY] [DLA 1074-1] poppler security update | |
| Date: | Tue, 29 Aug 2017 18:56:46 +0200 | |
| Message-ID: | <d8ccaf80-6c86-d6bf-cf71-201f7dbae517@debian.org> |
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 Package : poppler Version : 0.18.4-6+deb7u2 CVE ID : CVE-2013-4473 CVE-2013-4474 CVE-2017-9775 CVE-2017-9776 CVE-2017-9865 Several buffer and integer overflow issues were discovered in Poppler, a PDF library, that could lead to application crash or possibly other unspecified impact via maliciously crafted files. For Debian 7 "Wheezy", these problems have been fixed in version 0.18.4-6+deb7u2. We recommend that you upgrade your poppler packages. Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: https://wiki.debian.org/LTS -----BEGIN PGP SIGNATURE----- iQIzBAEBCAAdFiEEcJymx+vmJZxd92Q+nUbEiOQ2gwIFAlmlnMsACgkQnUbEiOQ2 gwKLKxAAgchpqh362GQxueOaaAxFHLPIPqqNvPei1di24QGRnbbr36Rz9ggbMw5y oAo8t95Vk1kE42hRteXP0MJSHBzkPCbCAuylpElgkVd9I2tUzoBn/XYixgaDSwwD ETvGVZ8jqWKkvmTIjj9GAhZhFBYf0dmNbQ+DQxWYQYowrpLqIy+xmNhPTeBIoW2W IGSFIXJSDDDzw6MFl9PKBfg2sz1l48MNeL7Dy4E7ZqZoqUFtU6U1/ySPPlq8bzgM CWkGA7EloGwrnejdgkW8g0fxAhSr938h6QUMlKZ6vykb9JW/5BlfrfA4uRAqyEoo pPZ0HS/pM40jqZ+QmgK6uRElUCRQ5k3cSknjJ1UENlo6A+RhaJsPfgErToXHd6NE 80G9FJShA8ltiVd0DnORP1QvuCyQOxgfjYkVZCcvOAhmk9rsGB9IsfWbscSd0uIt RhRwXZw/lcGf0gL1qOTim5NZhYNU/BL9djB5+cJ13qx2EMPMnOFfEf0kFCOjU9W/ WX4fT96a0qT4EjYHb/HCSf6arLDSXIUgsgW+f4C2wmdUr29+D27jv5zQ3P0U+b3+ 9oz6eT5bgAREeV69RXbVu9N1ZzAMQm+NjMEzhbc/1KXF+zBUGkVcJLWP/xpKvSjy gBr257lUFLHHF5ctrBm8QsbAldHAheiW3MJpRqWEfQUackzJNKY= =6FUK -----END PGP SIGNATURE-----