Ubuntu
poppler package

poppler 0.4.3-1ubuntu1 source package in Ubuntu

Changelog

poppler (0.4.3-1ubuntu1) dapper; urgency=low


  * SECURITY UPDATE: Multiple integer/buffer overflows.
  * Add debian/patches/003-CVE-2005-3624_5_7.patch:
    - poppler/Stream.cc, CCITTFaxStream::CCITTFaxStream():
      + Check columns for negative or large values.
      + CVE-2005-3624
    - poppler/Stream.cc, numComps checks introduced in CVE-2005-3191 patch:
      + Reset numComps to 0 since it's a global variable that is used later.
      + CVE-2005-3627
    - poppler/Stream.cc, DCTStream::readHuffmanTables():
      + Fix out of bounds array access in Huffman tables.
      + CVE-2005-3627
    - poppler/Stream.cc, DCTStream::readMarker():
      + Check for EOF in while loop to prevent endless loops.
      + CVE-2005-3625
    - poppler/JBIG2Stream.cc, JBIG2Bitmap::JBIG2Bitmap(),
      JBIG2Bitmap::expand(), JBIG2Stream::readHalftoneRegionSeg():
      + Check user supplied width and height against invalid values.
      + Allocate one extra byte to prevent out of bounds access in combine().
  * Add debian/patches/004-fix-CVE-2005-3192.patch:
    - Fix nVals int overflow check in StreamPredictor::StreamPredictor().
    - Forwarded upstream to https://bugs.freedesktop.org/show_bug.cgi?id=5514.

 -- Martin Pitt <email address hidden>  Thu,  5 Jan 2006 13:44:58 +0100

Upload details

Uploaded by:
Ubuntu Archive Auto-Sync
Uploaded to:
Dapper
Original maintainer:
Ondřej Surý
Architectures:
any
Section:
text
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Downloads

File Size SHA-256 Checksum
poppler_0.4.3-1ubuntu1.dsc 1.7 KiB 7062bee8d3443199f38d7f9c33c5e6e80b92ecbee3cde91233f92c6c90add81c
poppler_0.4.3.orig.tar.gz 761.3 KiB e9497a358fcc86c1383f1faa6ddc3042e0906af04c236e04e62fde38c13443e1
poppler_0.4.3-1ubuntu1.diff.gz 121.6 KiB 0db49710addd3f6805877db124d130a9b196b8aa1797681bdbf6941fb5c4f96c

No changes file available.

Binary packages built by this source

libpoppler-dev: No summary available for libpoppler-dev in ubuntu dapper.

No description available for libpoppler-dev in ubuntu dapper.

libpoppler-glib-dev: No summary available for libpoppler-glib-dev in ubuntu dapper.

No description available for libpoppler-glib-dev in ubuntu dapper.

libpoppler-qt-dev: No summary available for libpoppler-qt-dev in ubuntu dapper.

No description available for libpoppler-qt-dev in ubuntu dapper.

libpoppler0c2: No summary available for libpoppler0c2 in ubuntu dapper.

No description available for libpoppler0c2 in ubuntu dapper.

libpoppler0c2-glib: No summary available for libpoppler0c2-glib in ubuntu dapper.

No description available for libpoppler0c2-glib in ubuntu dapper.

libpoppler0c2-qt: No summary available for libpoppler0c2-qt in ubuntu dapper.

No description available for libpoppler0c2-qt in ubuntu dapper.

poppler-utils: No summary available for poppler-utils in ubuntu dapper.

No description available for poppler-utils in ubuntu dapper.