Format: 1.8 Date: Wed, 26 Jun 2019 09:43:05 -0400 Source: poppler Binary: libpoppler79 libpoppler-dev libpoppler-private-dev libpoppler-glib8 libpoppler-glib-dev libpoppler-glib-doc gir1.2-poppler-0.18 libpoppler-qt5-1 libpoppler-qt5-dev libpoppler-cpp0v5 libpoppler-cpp-dev poppler-utils Architecture: armhf Version: 0.68.0-0ubuntu1.7 Distribution: cosmic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: gir1.2-poppler-0.18 - GObject introspection data for poppler-glib libpoppler-cpp-dev - PDF rendering library -- development files (CPP interface) libpoppler-cpp0v5 - PDF rendering library (CPP shared library) libpoppler-dev - PDF rendering library -- development files libpoppler-glib-dev - PDF rendering library -- development files (GLib interface) libpoppler-glib-doc - PDF rendering library -- documentation for the GLib interface libpoppler-glib8 - PDF rendering library (GLib-based shared library) libpoppler-private-dev - PDF rendering library -- private development files libpoppler-qt5-1 - PDF rendering library (Qt 5 based shared library) libpoppler-qt5-dev - PDF rendering library -- development files (Qt 5 interface) libpoppler79 - PDF rendering library poppler-utils - PDF utilities (based on Poppler) Changes: poppler (0.68.0-0ubuntu1.7) cosmic-security; urgency=medium . * SECURITY UPDATE: memory leak in GfxColorSpace::setDisplayProfile - debian/patches/CVE-2018-18897.patch: enforcing single initialization in poppler/GfxState.cc, qt5/src/poppler-qt5.h. - CVE-2018-18897 * SECURITY UPDATE: DoS via crafted PDF file - debian/patches/CVE-2018-20662.patch: check XRef's Catalog for being a Dict in utils/pdfunite.cc. - CVE-2018-20662 * SECURITY UPDATE: buffer over-read in downsample_row_box_filter - debian/patches/CVE-2019-9631-1.patch: compute correct coverage values for box filter in poppler/CairoRescaleBox.cc. - debian/patches/CVE-2019-9631-2.patch: constrain number of cycles in rescale filter in poppler/CairoRescaleBox.cc. - CVE-2019-9631 * SECURITY UPDATE: dict marking mishandling - debian/patches/CVE-2019-9903.patch: fix stack overflow on broken file in poppler/PDFDoc.cc. - CVE-2019-9903 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2019-10872.patch: restrict filling of overlapping boxes in splash/Splash.cc. - CVE-2019-10872 * SECURITY UPDATE: buffer over-read in JPXStream::init - debian/patches/CVE-2019-12293.patch: fail gracefully if not all components have the same WxH in poppler/JPEG2000Stream.cc. - CVE-2019-12293 Checksums-Sha1: 7f86e2a902f8f74d5871eeeda1c102557918ca77 18468 gir1.2-poppler-0.18_0.68.0-0ubuntu1.7_armhf.deb 1224d8a905e289332b472ad05498b6fb639ec2de 9352 libpoppler-cpp-dev_0.68.0-0ubuntu1.7_armhf.deb 49c7c701dba425435401d383166307393fcec7e5 627180 libpoppler-cpp0v5-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 00b358fec79d6ea4197db442d4255279f2bd382e 26988 libpoppler-cpp0v5_0.68.0-0ubuntu1.7_armhf.deb ec2b5bbf8d41a99192992424f8bd23c4111b705e 4624 libpoppler-dev_0.68.0-0ubuntu1.7_armhf.deb 23e8da14318d1cce6097a00590b22f7f0f800860 47764 libpoppler-glib-dev_0.68.0-0ubuntu1.7_armhf.deb 68ef0295d0e584664a51be4825cce1ee18bb365d 1289432 libpoppler-glib8-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 0c97825e06f9fded410ac3112b5c3856f11b3d47 92856 libpoppler-glib8_0.68.0-0ubuntu1.7_armhf.deb f19537b889d1228c3501a9cc4d902011915e1c81 172312 libpoppler-private-dev_0.68.0-0ubuntu1.7_armhf.deb a109a52b570697e3580dbd49ed7ff416b2754287 3771264 libpoppler-qt5-1-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb a6572e64bd94e6afe3315336ea1b2af326f782b0 130260 libpoppler-qt5-1_0.68.0-0ubuntu1.7_armhf.deb 528274b7deeb50b09c93950df3e1ef16da914cd2 32840 libpoppler-qt5-dev_0.68.0-0ubuntu1.7_armhf.deb 15ec4df2fd6dc8ec4a52a0eaa822ade579a1f01a 4866108 libpoppler79-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 9a6f457ec469946f66aa69513340f313311ceb8c 688376 libpoppler79_0.68.0-0ubuntu1.7_armhf.deb 4c30a3498b19f401cab589debeb895be0fc1c096 2095728 poppler-utils-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 0d71d1a098e981cbd903085df0286d4c6a700c9e 134884 poppler-utils_0.68.0-0ubuntu1.7_armhf.deb a25434760aa17b3d71d9e64a0a25003de8826918 18562 poppler_0.68.0-0ubuntu1.7_armhf.buildinfo Checksums-Sha256: 1dca4bf2f904ad85f409d01cfaf52b408ed3b57daadbaea027d3a066866f7870 18468 gir1.2-poppler-0.18_0.68.0-0ubuntu1.7_armhf.deb 15376a1fedf913cf4c75f860c7a108bfbb13216d6c6e04db96bb720d6269440f 9352 libpoppler-cpp-dev_0.68.0-0ubuntu1.7_armhf.deb 73fab8195c5419004f4952e1209a572a36753c609486c7f7541682e0e5d20b8f 627180 libpoppler-cpp0v5-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 87c2a82b5a7095a81e0df33dff5c4479892748e0b26bc28ca490c27300d6771a 26988 libpoppler-cpp0v5_0.68.0-0ubuntu1.7_armhf.deb 473cf27eb09bee0f4842d62471fb3bb2a47b4b956fcaac5728fa163229df0c6a 4624 libpoppler-dev_0.68.0-0ubuntu1.7_armhf.deb a571f1d3c6a12ac357524cda475af855fb1ab0933df70a16da66bb91afd777d3 47764 libpoppler-glib-dev_0.68.0-0ubuntu1.7_armhf.deb 47eaecca4fbb2e56abaac4db2e7882905781a2a42906564cc64b7d724de95c46 1289432 libpoppler-glib8-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 11fad804eb8ec9d6134b0a98033625b1503d3b5667a2b68511fdabecc0cec804 92856 libpoppler-glib8_0.68.0-0ubuntu1.7_armhf.deb 65c193f043f0d1209373678719216f7fb4dfe99fff912aaec4cb6a07698cb753 172312 libpoppler-private-dev_0.68.0-0ubuntu1.7_armhf.deb 08d287e08d7cb00848e539b906deba6b8653f46d72f55ce85b73d1052861f237 3771264 libpoppler-qt5-1-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 3da10a0c33a37a992c4ec68fe3bd4bee40cccfccc01f4b76f3f38ec7521cbe25 130260 libpoppler-qt5-1_0.68.0-0ubuntu1.7_armhf.deb 936f94b1e9da17c42dbd87126fab38834b28cf2793790b74b33390a65d8ff2e4 32840 libpoppler-qt5-dev_0.68.0-0ubuntu1.7_armhf.deb 95d12f003d5b397ed41c072d95503c7967e666ac1bb86c2918cc9b80d26616d3 4866108 libpoppler79-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 62ceb2745902ecaa39ee9cf394428e9dd031799479a35ac4d52af35eba141e13 688376 libpoppler79_0.68.0-0ubuntu1.7_armhf.deb fe1f7ebc6643242e9633aad27bb1347d043e0e9619a430ed257b5ec48969c5f4 2095728 poppler-utils-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 1f47b9fd9b4faa49bcbc5d098176f23af49738e536b529361b9cf2347d629dce 134884 poppler-utils_0.68.0-0ubuntu1.7_armhf.deb 1ca7bf5671d3a5264b463e509bc5f6530fff61ad05f8bf56220f12790ceda029 18562 poppler_0.68.0-0ubuntu1.7_armhf.buildinfo Files: e941b1430bb7cfe54825d3c243abd4dd 18468 introspection optional gir1.2-poppler-0.18_0.68.0-0ubuntu1.7_armhf.deb a8f4d3a8a5e4657b51fbd4df5952b773 9352 libdevel optional libpoppler-cpp-dev_0.68.0-0ubuntu1.7_armhf.deb 79525d52fe094acf78affa084b2d79af 627180 debug optional libpoppler-cpp0v5-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb a7a5023f8dbd0a4da69283ffa9eeb8ec 26988 libs optional libpoppler-cpp0v5_0.68.0-0ubuntu1.7_armhf.deb d83a08151004693f86f1d7ad8d143e15 4624 libdevel optional libpoppler-dev_0.68.0-0ubuntu1.7_armhf.deb 135d818f945b8e5d3e4972581da8d7f8 47764 libdevel optional libpoppler-glib-dev_0.68.0-0ubuntu1.7_armhf.deb 83a322038cc472e6422338f83605cb65 1289432 debug optional libpoppler-glib8-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 1e94a200ba0d7eb5cf91a230dc92645e 92856 libs optional libpoppler-glib8_0.68.0-0ubuntu1.7_armhf.deb 7c7a61e4504a93bd42100b263f818ac1 172312 libdevel optional libpoppler-private-dev_0.68.0-0ubuntu1.7_armhf.deb 7c1ed2e34a861822de5a5d25340bd8c9 3771264 debug optional libpoppler-qt5-1-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 0652d5ccf854a33646ce0b9a751b3233 130260 libs optional libpoppler-qt5-1_0.68.0-0ubuntu1.7_armhf.deb c78aa55ae44e58dd7137e2f6aa3bc594 32840 libdevel optional libpoppler-qt5-dev_0.68.0-0ubuntu1.7_armhf.deb 68c60b65d8487af53c6da07c1227029d 4866108 debug optional libpoppler79-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 33c7099af48396303e112057bc9ba0dc 688376 libs optional libpoppler79_0.68.0-0ubuntu1.7_armhf.deb ea551a5d923bcf9ef5c07b4cb50b4def 2095728 debug optional poppler-utils-dbgsym_0.68.0-0ubuntu1.7_armhf.ddeb 067fbc9ef0d1418825db913ef689f970 134884 utils optional poppler-utils_0.68.0-0ubuntu1.7_armhf.deb ae1637502e2a436cedcdd2f3d1b81232 18562 devel optional poppler_0.68.0-0ubuntu1.7_armhf.buildinfo Original-Maintainer: Debian freedesktop.org maintainers