SUSE-SU-2017:2952-1 -- SLES libpoppler44ID: oval:org.secpod.oval:def:89044590 | Date: (C)2021-06-30 (M)2022-10-10 |
Class: PATCH | Family: unix |
This update for poppler fixes the following issues: This security issue was fixed: - CVE-2017-14517: Prevent NULL Pointer dereference in the XRef::parseEntry function via a crafted PDF document . - CVE-2017-14518: Remedy a floating point exception in isImageInterpolationRequired that could have been exploited using a specially crafted PDF document. - CVE-2017-14520: Remedy a floating point exception in Splash::scaleImageYuXd that could have been exploited using a specially crafted PDF document. - CVE-2017-14977: Fixed a NULL pointer dereference vulnerability in the FoFiTrueType::getCFFBlock function in FoFiTrueType.cc that occurred due to lack of validation of a table pointer, which allows an attacker to launch a denial of service attack
Platform: |
SUSE Linux Enterprise Server 12 SP2 |