Format: 1.8 Date: Wed, 26 Jun 2019 09:59:06 -0400 Source: poppler Binary: libpoppler73 libpoppler-dev libpoppler-private-dev libpoppler-glib8 libpoppler-glib-dev libpoppler-glib-doc gir1.2-poppler-0.18 libpoppler-qt5-1 libpoppler-qt5-dev libpoppler-cpp0v5 libpoppler-cpp-dev poppler-utils Architecture: amd64 all Version: 0.62.0-2ubuntu2.9 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: gir1.2-poppler-0.18 - GObject introspection data for poppler-glib libpoppler-cpp-dev - PDF rendering library -- development files (CPP interface) libpoppler-cpp0v5 - PDF rendering library (CPP shared library) libpoppler-dev - PDF rendering library -- development files libpoppler-glib-dev - PDF rendering library -- development files (GLib interface) libpoppler-glib-doc - PDF rendering library -- documentation for the GLib interface libpoppler-glib8 - PDF rendering library (GLib-based shared library) libpoppler-private-dev - PDF rendering library -- private development files libpoppler-qt5-1 - PDF rendering library (Qt 5 based shared library) libpoppler-qt5-dev - PDF rendering library -- development files (Qt 5 interface) libpoppler73 - PDF rendering library poppler-utils - PDF utilities (based on Poppler) Changes: poppler (0.62.0-2ubuntu2.9) bionic-security; urgency=medium . * SECURITY UPDATE: memory leak in GfxColorSpace::setDisplayProfile - debian/patches/CVE-2018-18897.patch: enforcing single initialization in poppler/GfxState.cc, qt5/src/poppler-qt5.h. - CVE-2018-18897 * SECURITY UPDATE: DoS via crafted PDF file - debian/patches/CVE-2018-20662.patch: check XRef's Catalog for being a Dict in utils/pdfunite.cc. - CVE-2018-20662 * SECURITY UPDATE: buffer over-read in downsample_row_box_filter - debian/patches/CVE-2019-9631-1.patch: compute correct coverage values for box filter in poppler/CairoRescaleBox.cc. - debian/patches/CVE-2019-9631-2.patch: constrain number of cycles in rescale filter in poppler/CairoRescaleBox.cc. - CVE-2019-9631 * SECURITY UPDATE: dict marking mishandling - debian/patches/CVE-2019-9903.patch: fix stack overflow on broken file in poppler/PDFDoc.cc. - CVE-2019-9903 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2019-10872.patch: restrict filling of overlapping boxes in splash/Splash.cc. - CVE-2019-10872 * SECURITY UPDATE: buffer over-read in JPXStream::init - debian/patches/CVE-2019-12293.patch: fail gracefully if not all components have the same WxH in poppler/JPEG2000Stream.cc. - CVE-2019-12293 Checksums-Sha1: 9fada285c20e98ea8dff60630df0e79883d59612 18468 gir1.2-poppler-0.18_0.62.0-2ubuntu2.9_amd64.deb a2db091c3f4b32cbbb1988e6c5cecbb6817bc3c8 8680 libpoppler-cpp-dev_0.62.0-2ubuntu2.9_amd64.deb 9757b2aec274da2dc0a0699a5475a7e30a68db5a 451904 libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb da07b80740c64979be7c21897a570aa4f104a6b5 27988 libpoppler-cpp0v5_0.62.0-2ubuntu2.9_amd64.deb ea99dfc4340d80a835862fd2785f7ec9df434f17 4616 libpoppler-dev_0.62.0-2ubuntu2.9_amd64.deb a9bf9a805c155c597d1cb24c618ed4525029d178 47720 libpoppler-glib-dev_0.62.0-2ubuntu2.9_amd64.deb ffb1445ab349e58ce10842e28c4996794e622d13 72080 libpoppler-glib-doc_0.62.0-2ubuntu2.9_all.deb f3ea289a49049a787095e1927d2eab02603507a7 854072 libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 7ca7088443749139fe660cc7f214898ee64d0dd3 108200 libpoppler-glib8_0.62.0-2ubuntu2.9_amd64.deb f08678add8fe97157ce12d324aa32a937bfb6449 169080 libpoppler-private-dev_0.62.0-2ubuntu2.9_amd64.deb 422f0116107ece24984eb6d395385ddc06fed324 2844576 libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 04b43f9e43fcbc02ee65d8e28e5640043a35a617 139596 libpoppler-qt5-1_0.62.0-2ubuntu2.9_amd64.deb b32a2ee6dfdf66a4192fef1ce86a0ea55aac225e 32292 libpoppler-qt5-dev_0.62.0-2ubuntu2.9_amd64.deb f2617dd916ed699fce811fa9b89a55050ed89cc3 2972732 libpoppler73-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 0605a7ea95f55ff021a6e4e18eeaed1b40bf342d 799312 libpoppler73_0.62.0-2ubuntu2.9_amd64.deb 43446ff2bbefd928b83eea5326f79ea747bef361 1132728 poppler-utils-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 43f236e6ab152fd66481565171cff1d737b88dbf 154020 poppler-utils_0.62.0-2ubuntu2.9_amd64.deb aa105a73ff2d84ef7d7e6ab6763dd85505efd1b0 19415 poppler_0.62.0-2ubuntu2.9_amd64.buildinfo Checksums-Sha256: c1700f200d60bcaadb8472d2bbd37bfb80284df87d04d7c1f6f180926901f411 18468 gir1.2-poppler-0.18_0.62.0-2ubuntu2.9_amd64.deb 32c64db40d39d6b78f3bc5a0d932754b6cb4892fee3de75ff8948bb53a8b8480 8680 libpoppler-cpp-dev_0.62.0-2ubuntu2.9_amd64.deb f77cbefe0dd847e30791a3964b1567633c86ea39b587ef9ace30ab75a19ccaff 451904 libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb ba2a9c79cabbdbba4c58201690a2a711375b574176e36cd7fe7b199456f26854 27988 libpoppler-cpp0v5_0.62.0-2ubuntu2.9_amd64.deb 45e9ebe158f10cac4a349d10092e56599310984ab2e7134cf5e62f21a34f6b39 4616 libpoppler-dev_0.62.0-2ubuntu2.9_amd64.deb 771b6bbcc38873be5f78bb81e538d77160aa79ab5ca4f646f9b84d1419972b4a 47720 libpoppler-glib-dev_0.62.0-2ubuntu2.9_amd64.deb 04703337c26997f39f4adb377af56f4cb656b97feadbaa28a44ca55ad0bac3d8 72080 libpoppler-glib-doc_0.62.0-2ubuntu2.9_all.deb d645d1dc785bb93586f4ddd1b617537f4fe1d3fb31de468f22092475196eacb0 854072 libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb dec1435e1d7766f851a14707dd0a4ade5fe30b42b4cc25371d9db067c6b2af68 108200 libpoppler-glib8_0.62.0-2ubuntu2.9_amd64.deb bb4134eea5a60f6d470a9791c6427d6faf5a6b0c73dd1d2ef69dfa736a75e382 169080 libpoppler-private-dev_0.62.0-2ubuntu2.9_amd64.deb 174dd55b8123f477652e10fb34533c900a89746c77022b61a58520487a51ecbf 2844576 libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb e20a5916dc9465c8a00e80efe5a91da9b8bdf659a00ab9a378520d0225e1a090 139596 libpoppler-qt5-1_0.62.0-2ubuntu2.9_amd64.deb 678c0acc03dc3f6aaabef5742b04f10b91f32ff69a17ec2b8547f80840bda859 32292 libpoppler-qt5-dev_0.62.0-2ubuntu2.9_amd64.deb b468300d4b4b3c4b6e1b343a23a02c0abbedea9990cd95f363d09b5c0217d23e 2972732 libpoppler73-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 2ba01d152510ebd0a32c754ae0f64491921e94234952466dc4e58eb89acb80c1 799312 libpoppler73_0.62.0-2ubuntu2.9_amd64.deb 83c373eb978b7b0df516ada717bcaacedeeeb008ed8fc2eebcb99c58773e72be 1132728 poppler-utils-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 8562165f959d26e53771dc798c18f3961bf24c9ebcc05ea5caa864043b3f093c 154020 poppler-utils_0.62.0-2ubuntu2.9_amd64.deb 45b89018f563196e64703db0fd52aa8ec8e033ae29a98b65707ad3b29a18c6b6 19415 poppler_0.62.0-2ubuntu2.9_amd64.buildinfo Files: 2b03f101fa4e1e51c8b5b6790e98fb03 18468 introspection optional gir1.2-poppler-0.18_0.62.0-2ubuntu2.9_amd64.deb 918c812eaab16e92afdf17f1870b3ce0 8680 libdevel optional libpoppler-cpp-dev_0.62.0-2ubuntu2.9_amd64.deb 7ffa198e2ab78950eebc0f4669b76db5 451904 debug optional libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb ce9006b4ff3661fb40865645a351b823 27988 libs optional libpoppler-cpp0v5_0.62.0-2ubuntu2.9_amd64.deb 847fd1ff72fe88aa684b9ede7f40f3fa 4616 libdevel optional libpoppler-dev_0.62.0-2ubuntu2.9_amd64.deb e369a2aa17d358126722db0356638b35 47720 libdevel optional libpoppler-glib-dev_0.62.0-2ubuntu2.9_amd64.deb f1e6f9025dcb40a90935e92f85369d12 72080 doc optional libpoppler-glib-doc_0.62.0-2ubuntu2.9_all.deb 4eadfe5961ac31943e98d983bf42098b 854072 debug optional libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb ebaf0fae7d3b36303b2719df77e08543 108200 libs optional libpoppler-glib8_0.62.0-2ubuntu2.9_amd64.deb dad257572091472b9c06e59f32f691e9 169080 libdevel optional libpoppler-private-dev_0.62.0-2ubuntu2.9_amd64.deb fd8768358e13271de9062ca6ff82fb08 2844576 debug optional libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 57d191eb99e6c51c85cbbae90ae709fa 139596 libs optional libpoppler-qt5-1_0.62.0-2ubuntu2.9_amd64.deb 6490f03c87b8cf8603c76f4e25ec262c 32292 libdevel optional libpoppler-qt5-dev_0.62.0-2ubuntu2.9_amd64.deb 5290a5ca52bc20a3d6619748e66d39ff 2972732 debug optional libpoppler73-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 7e67e65e99acb55e74f101d9b5d9c317 799312 libs optional libpoppler73_0.62.0-2ubuntu2.9_amd64.deb 2cfcb2f5f65c0b05bf8c6ccbc4e71d13 1132728 debug optional poppler-utils-dbgsym_0.62.0-2ubuntu2.9_amd64.ddeb 80d3f7bc4eaa79037e1eba0c37379234 154020 utils optional poppler-utils_0.62.0-2ubuntu2.9_amd64.deb 868eafbe22532598543ff91a8e88c3f0 19415 devel optional poppler_0.62.0-2ubuntu2.9_amd64.buildinfo Original-Maintainer: Debian freedesktop.org maintainers