Download
| Alert*
oval:org.secpod.oval:def:89002044
This update for poppler fixes the following issues: These security issues were fixed: - CVE-2017-14517: Prevent NULL Pointer dereference in the XRef::parseEntry function via a crafted PDF document . - CVE-2017-9865: Fixed a stack-based buffer overflow vulnerability in GfxState.cc that would have all ... oval:org.secpod.oval:def:2103746 freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations. oval:org.secpod.oval:def:89002170 This update for poppler fixes the following issues: - CVE-2017-14977: Fixed a NULL pointer dereference vulnerability in the FoFiTrueType::getCFFBlock function in FoFiTrueType.cc that occurred due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack. ... oval:org.secpod.oval:def:113879 poppler is a PDF rendering library. oval:org.secpod.oval:def:114931 poppler is a PDF rendering library. oval:org.secpod.oval:def:113862 poppler is a PDF rendering library. oval:org.secpod.oval:def:704195 poppler: PDF rendering library Several security issues were fixed in poppler. oval:org.secpod.oval:def:114588 poppler is a PDF rendering library. oval:org.secpod.oval:def:52079 poppler: PDF rendering library Several security issues were fixed in poppler. oval:org.secpod.oval:def:53237 Multiple vulnerabilities were discovered in the poppler PDF rendering library, which could result in denial of service or the execution of arbitrary code if a malformed PDF file is processed. This update also fixes a regression in the handling of Type 3 fonts. oval:org.secpod.oval:def:603250 Multiple vulnerabilities were discovered in the poppler PDF rendering library, which could result in denial of service or the execution of arbitrary code if a malformed PDF file is processed. This update also fixes a regression in the handling of Type 3 fonts. |