| Summary: |
<app-text/poppler-0.55.0-r1 : Null pointer dereference in pdfunite via crafted documents |
| Product: |
Gentoo Security
|
Reporter: |
Agostino Sarubbo <ago> |
| Component: |
Vulnerabilities | Assignee: |
Gentoo Security <security> |
| Status: |
RESOLVED
FIXED
|
|
|
| Severity: |
normal
|
CC: |
printing, reavertm, sudormrfhalt
|
| Priority: |
Normal
|
|
|
| Version: |
unspecified | |
|
| Hardware: |
All | |
|
| OS: |
Linux | |
|
| URL: |
https://bugzilla.redhat.com/show_bug.cgi?id=1456827
|
| Whiteboard: |
A3 [glsa+ cve] |
|
Package list:
|
|
Runtime testing required:
|
---
|
|---|
| Bug Depends on: |
627390
|
|
|
| Bug Blocks: |
|
|
|
From ${URL} : poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents. Upstream bugs: https://bugs.freedesktop.org/show_bug.cgi?id=101149 https://bugs.freedesktop.org/show_bug.cgi?id=101153 Upstream patch: https://cgit.freedesktop.org/poppler/poppler/commit/?id=5c9b08a875b07853be6c44e43ff5f7f059df666a @maintainer(s): after the bump, in case we need to stabilize the package, please let us know if it is ready for the stabilization or not.