Format: 1.8 Date: Fri, 30 Nov 2018 14:36:01 -0300 Source: poppler Binary: libpoppler73 libpoppler-dev libpoppler-private-dev libpoppler-glib8 libpoppler-glib-dev libpoppler-glib-doc gir1.2-poppler-0.18 libpoppler-qt5-1 libpoppler-qt5-dev libpoppler-cpp0v5 libpoppler-cpp-dev poppler-utils Architecture: i386 Version: 0.62.0-2ubuntu2.4 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Leonidas S. Barbosa Description: gir1.2-poppler-0.18 - GObject introspection data for poppler-glib libpoppler-cpp-dev - PDF rendering library -- development files (CPP interface) libpoppler-cpp0v5 - PDF rendering library (CPP shared library) libpoppler-dev - PDF rendering library -- development files libpoppler-glib-dev - PDF rendering library -- development files (GLib interface) libpoppler-glib-doc - PDF rendering library -- documentation for the GLib interface libpoppler-glib8 - PDF rendering library (GLib-based shared library) libpoppler-private-dev - PDF rendering library -- private development files libpoppler-qt5-1 - PDF rendering library (Qt 5 based shared library) libpoppler-qt5-dev - PDF rendering library -- development files (Qt 5 interface) libpoppler73 - PDF rendering library poppler-utils - PDF utilities (based on Poppler) Changes: poppler (0.62.0-2ubuntu2.4) bionic-security; urgency=medium . [ Marc Deslauriers ] * SECURITY UPDATE: infinite recursion via crafted file - debian/patches/CVE-2018-16646.patch: avoid cycles in PDF parsing in poppler/Parser.cc, poppler/XRef.h. - CVE-2018-16646 * SECURITY UPDATE: denial of service via reachable abort - debian/patches/CVE-2018-19058.patch: check for stream before calling stream methods when saving an embedded file in poppler/FileSpec.cc. - CVE-2018-19058 * SECURITY UPDATE: denial of service via out-of-bounds read - debian/patches/CVE-2018-19059.patch: check for valid embedded file before trying to save it in utils/pdfdetach.cc. - CVE-2018-19059 * SECURITY UPDATE: denial of service via NULL pointer dereference - debian/patches/CVE-2018-19060.patch: check for valid file name of embedded file in utils/pdfdetach.cc. - CVE-2018-19060 Checksums-Sha1: 5622d9dc2f36ac96e6a10b5ee2a4f14a6e1d7349 18440 gir1.2-poppler-0.18_0.62.0-2ubuntu2.4_i386.deb 61225ea1694e76132de4fbc9ac0d0b4c84d447c2 8672 libpoppler-cpp-dev_0.62.0-2ubuntu2.4_i386.deb 5ac13713136b86f2e5b6ebb5d6287c22f6460c9b 441204 libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 3b7ffe9da83acd4e7481548b01d7ce47950123da 30536 libpoppler-cpp0v5_0.62.0-2ubuntu2.4_i386.deb bc8c85fe1dfcead31f9f51564935f056fdca1788 4604 libpoppler-dev_0.62.0-2ubuntu2.4_i386.deb 99bc0de2d64fc86a6b69637a44fe090691b190a8 47692 libpoppler-glib-dev_0.62.0-2ubuntu2.4_i386.deb 530efafbc21b68bf1553a34fa95e9926ff6f8f57 811360 libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb f0327849d1ff9899b05a0edc36c19ebe697b035f 114372 libpoppler-glib8_0.62.0-2ubuntu2.4_i386.deb 83e65ee5147dc1574afe711969bb92fe4c2cca18 169232 libpoppler-private-dev_0.62.0-2ubuntu2.4_i386.deb 5c1e435c68e66036654bd2ce4030792cc23400b5 2785288 libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 128840239f1218858c113deaf24feedc8dc6bf0a 155160 libpoppler-qt5-1_0.62.0-2ubuntu2.4_i386.deb feb98c583cff8993c1ae96931d2aa4f8661f4b84 32232 libpoppler-qt5-dev_0.62.0-2ubuntu2.4_i386.deb b8a9bebb1d7252806df669ba33e05c25b09270a6 2662148 libpoppler73-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 2979ae82f2da4968c6cd058da44809d50939f6c3 831716 libpoppler73_0.62.0-2ubuntu2.4_i386.deb d6028cfb3028efd9e34d6ef8fe014abe087cb6a2 1087492 poppler-utils-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 830e2b8eaeeb4291b82467d9e9c74b3cf09e7c16 158292 poppler-utils_0.62.0-2ubuntu2.4_i386.deb 3df37c2dd2551c4fd12fcbeb1010a471887ce324 18677 poppler_0.62.0-2ubuntu2.4_i386.buildinfo Checksums-Sha256: 775d90b3f1da7b50c0a7a0f4593d07b89e61bd868bb982701a26bb68010f8578 18440 gir1.2-poppler-0.18_0.62.0-2ubuntu2.4_i386.deb 62bf8839815d411ba1fe9a104b481982a9dc4a81b7b651c6ac9848532dd70134 8672 libpoppler-cpp-dev_0.62.0-2ubuntu2.4_i386.deb 75cc01424b69c101d1df839d7667751c8f0a42c98ddd214236f6db927e4f2b81 441204 libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 201bf52f204236dccdb20bfb92b08f7dac7c97f01ce066bbde6bd01042f09ff8 30536 libpoppler-cpp0v5_0.62.0-2ubuntu2.4_i386.deb 199a8df47718623458dd11866ea3af5ec52832fcbc6cc74733ac71bb021cbb24 4604 libpoppler-dev_0.62.0-2ubuntu2.4_i386.deb 1711495a5a14a72a7b69ea5db6bd54cbdd44eb0cd3b9bbb66fd4c6c420ee3f4b 47692 libpoppler-glib-dev_0.62.0-2ubuntu2.4_i386.deb 5b557dfce2ad997a3e0eada366df53423fcaa1197753b4515b085485e6810118 811360 libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 994b088155e311cdfe30aa1fc75df522cd88e28af35e676d132631879d15724a 114372 libpoppler-glib8_0.62.0-2ubuntu2.4_i386.deb 611ff04375c4f10ebd27a2a7a4fa3ff3923e39c3e688308f0586c562cd95b712 169232 libpoppler-private-dev_0.62.0-2ubuntu2.4_i386.deb 9bdf912ab225cb0bcadd924522317136a7c0709cc479e01fe035470ec368b60f 2785288 libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb bd5bb27e4c666c37fc7e92c6cbad3f3fbc426294f03a89572338451c40ff3b64 155160 libpoppler-qt5-1_0.62.0-2ubuntu2.4_i386.deb ef8e219abe8d3331c065907053d92fd2b847d75af06306b909931859e20aa740 32232 libpoppler-qt5-dev_0.62.0-2ubuntu2.4_i386.deb d9187161b4508ddbe3eaf9d09b80fe49f0e88bd7761aa0dba7a7356c65116190 2662148 libpoppler73-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 1d904049c43d58cd6356938d36ece839ecf573b6b9fe2587d40e2934ce487d1e 831716 libpoppler73_0.62.0-2ubuntu2.4_i386.deb a4ccec84bb2a020e01523f4a81d7fdfbce20e2e70f5fa49b7c152fb1d65961e1 1087492 poppler-utils-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 284605c307b600955f1ba706c37bab167ee70157ae393a849138762f04d11208 158292 poppler-utils_0.62.0-2ubuntu2.4_i386.deb d047b5a771acd37f798597d64901e8cf615887ac7bf7ccad2fc00975820c2ba3 18677 poppler_0.62.0-2ubuntu2.4_i386.buildinfo Files: 059fb5b5720d8ecff15e1ae26831a754 18440 introspection optional gir1.2-poppler-0.18_0.62.0-2ubuntu2.4_i386.deb eb1b2bc71ee342105bebe2e68c7bda2d 8672 libdevel optional libpoppler-cpp-dev_0.62.0-2ubuntu2.4_i386.deb d425cb9d0a51ecdfebaae142a2b63529 441204 debug optional libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 71493d6797c15bac6a0ea9a0d4460b95 30536 libs optional libpoppler-cpp0v5_0.62.0-2ubuntu2.4_i386.deb c46c0f71ed4c353e32224ba1c5288e04 4604 libdevel optional libpoppler-dev_0.62.0-2ubuntu2.4_i386.deb 2a3d5df79b2a39faebba3b60d5c1aa10 47692 libdevel optional libpoppler-glib-dev_0.62.0-2ubuntu2.4_i386.deb 42316e0b16cf2d4942d0a9fbf7f1c9c1 811360 debug optional libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb a3823f0ca660b24bfd447cf365d9ccc3 114372 libs optional libpoppler-glib8_0.62.0-2ubuntu2.4_i386.deb a95cf6082ae11a50a088c0b4ea7f8b15 169232 libdevel optional libpoppler-private-dev_0.62.0-2ubuntu2.4_i386.deb 4b36117330b269787aec427f062b5400 2785288 debug optional libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb d49cf2b48947d1bfb5a3ad2d394e81bf 155160 libs optional libpoppler-qt5-1_0.62.0-2ubuntu2.4_i386.deb 41718cfa5924842dcc76880a44321ff8 32232 libdevel optional libpoppler-qt5-dev_0.62.0-2ubuntu2.4_i386.deb fc5fc2fd75c3fabaee949b1d934ae386 2662148 debug optional libpoppler73-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb 13c2976eb89681cb69852f2748cee678 831716 libs optional libpoppler73_0.62.0-2ubuntu2.4_i386.deb 967bb46f62a910679de55b698ddb9bf6 1087492 debug optional poppler-utils-dbgsym_0.62.0-2ubuntu2.4_i386.ddeb c09918e7512106077568a9e243a6d5df 158292 utils optional poppler-utils_0.62.0-2ubuntu2.4_i386.deb 8708fccdb5b2ae6f3fb0d1da301f271e 18677 devel optional poppler_0.62.0-2ubuntu2.4_i386.buildinfo Original-Maintainer: Debian freedesktop.org maintainers