|
|
Log in / Subscribe / Register

Debian alert DLA-1963-2 (poppler)



From:
              Brian May <bam@debian.org> 


To:
              debian-lts-announce@lists.debian.org 


Subject:
              [SECURITY] [DLA 1963-2] poppler regression update 


Date:
              Fri, 18 Oct 2019 17:44:30 +1100


Message-ID:
              <20191018064430.GA4805@silverfish.pri>


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Package        : poppler
Version        : 0.18_0.26.5-2+deb8u13
CVE ID         : CVE-2019-10871
Debian Bug     : 942503


The fix for CVE-2019-10871 broke xpdf. This change has been reverted
until a better fix can be developed.

For Debian 8 "Jessie", this problem has been fixed in version
0.18_0.26.5-2+deb8u13.

We recommend that you upgrade your poppler packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS
-----BEGIN PGP SIGNATURE-----

iQIzBAEBCAAdFiEEKpwfR8DOwu5vyB4TKpJZkldkSvoFAl2pVvUACgkQKpJZkldk
Svob0xAAjrhVRM0qdc62DzXRcAX6lz1Dl1CGrYzgDYquE/pmLD6hrne1uJhLi9Cd
pEX1/2kCRoWK1WFGTa3JRka6ZsgHtgxPmkgZ+XB1166QIpn+cC+TblgelesgTHwB
AvtCaS1Xic+0D+TNbuAADHVFaHXKhDPa9ULUzz28ZqRJAV3Fmhh/LtQYcsSJADSe
M1TXKoT8g9zPE/fwi78yQ8vPzvKiszD7y5eNF33LrC3tBF2NUuRBCyct1PHVXWFC
U1SLCwJsuG5eanjy14k8NNsvTc6+85z8MiJXJdK98s/ziqZPb79p4ArgmcWzEyG1
5dBaUOaoUP0xlMCP+kZAEwSDxoype5lq9dDenzinF2QP9V9FNaGOleoNx3C36pks
q9xG1lOUD5CSkO5O/XwKvHYVtujA7LtYldf4G4qlApmW7cvQirlHD2loXCoZmzbM
+D19lPZRSAStEV5wsuQ0lJrQHSIih8nxCr6yIQ6/8NDUbN+Xlklklwo/3vtmFl8d
znkMlrQxiQDCr0S3Dc1Ysl3r7kplilBt1mosGyXQxTRCRu+/G1r18nKhZK2NaV8E
Jqe22slR/B20peDxOLzW/+uu3OZpHqpZhTmtqlw9sSrRfyxDYGf/we52j1BwLpQz
VlO2VEtbPMPITK/Pp3ORGXgaEGHypIUSdbuJg1QcpfbrWTTCsBA=
=jbb9
-----END PGP SIGNATURE-----
to post comments


Copyright © 2026, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds