OESA-2022-1906
- Source
- https://www.openeuler.org/en/security/security-bulletins/detail/?id=openEuler-SA-2022-1906
- Import Source
- https://repo.openeuler.org/security/data/osv/OESA-2022-1906.json
- JSON Data
- https://api.osv.dev/v1/vulns/OESA-2022-1906
- Upstream
- Published
- 2022-09-09T11:04:15Z
- Modified
- 2025-09-03T06:18:25.146151Z
- Summary
- poppler security update
- Details
-
Poppler is a free software utility library for rendering Portable Document Format (PDF) documents. \Its development is supported by freedesktop.org. It is commonly used on Linux systems,and is used by \the PDF viewers of the open source GNOME and KDE desktop environments.
Security Fix(es):
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.(CVE-2022-38784)
- Database specific
{ "severity": "High" }- References
Affected packages
openEuler:20.03-LTS-SP1 / poppler
Package
- Name
- poppler
- Purl
- pkg:rpm/openEuler/poppler&distro=openEuler-20.03-LTS-SP1
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.67.0-8.oe1
Ecosystem specific
{
"src": [
"poppler-0.67.0-8.oe1.src.rpm"
],
"x86_64": [
"poppler-qt5-0.67.0-8.oe1.x86_64.rpm",
"poppler-qt-0.67.0-8.oe1.x86_64.rpm",
"poppler-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-debuginfo-0.67.0-8.oe1.x86_64.rpm",
"poppler-0.67.0-8.oe1.x86_64.rpm",
"poppler-glib-0.67.0-8.oe1.x86_64.rpm",
"poppler-qt5-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-cpp-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-debugsource-0.67.0-8.oe1.x86_64.rpm",
"poppler-qt-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-cpp-0.67.0-8.oe1.x86_64.rpm",
"poppler-glib-devel-0.67.0-8.oe1.x86_64.rpm"
],
"aarch64": [
"poppler-cpp-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-debuginfo-0.67.0-8.oe1.aarch64.rpm",
"poppler-0.67.0-8.oe1.aarch64.rpm",
"poppler-qt-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-qt5-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-debugsource-0.67.0-8.oe1.aarch64.rpm",
"poppler-glib-0.67.0-8.oe1.aarch64.rpm",
"poppler-qt-0.67.0-8.oe1.aarch64.rpm",
"poppler-glib-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-qt5-0.67.0-8.oe1.aarch64.rpm",
"poppler-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-cpp-0.67.0-8.oe1.aarch64.rpm"
],
"noarch": [
"poppler-glib-doc-0.67.0-8.oe1.noarch.rpm",
"poppler-help-0.67.0-8.oe1.noarch.rpm"
]
}
openEuler:20.03-LTS-SP3 / poppler
Package
- Name
- poppler
- Purl
- pkg:rpm/openEuler/poppler&distro=openEuler-20.03-LTS-SP3
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.67.0-8.oe1
Ecosystem specific
{
"src": [
"poppler-0.67.0-8.oe1.src.rpm"
],
"x86_64": [
"poppler-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-0.67.0-8.oe1.x86_64.rpm",
"poppler-qt5-0.67.0-8.oe1.x86_64.rpm",
"poppler-debugsource-0.67.0-8.oe1.x86_64.rpm",
"poppler-glib-0.67.0-8.oe1.x86_64.rpm",
"poppler-glib-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-qt-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-cpp-0.67.0-8.oe1.x86_64.rpm",
"poppler-qt-0.67.0-8.oe1.x86_64.rpm",
"poppler-cpp-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-qt5-devel-0.67.0-8.oe1.x86_64.rpm",
"poppler-debuginfo-0.67.0-8.oe1.x86_64.rpm"
],
"aarch64": [
"poppler-cpp-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-glib-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-cpp-0.67.0-8.oe1.aarch64.rpm",
"poppler-debuginfo-0.67.0-8.oe1.aarch64.rpm",
"poppler-qt-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-0.67.0-8.oe1.aarch64.rpm",
"poppler-glib-0.67.0-8.oe1.aarch64.rpm",
"poppler-qt5-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-qt-0.67.0-8.oe1.aarch64.rpm",
"poppler-debugsource-0.67.0-8.oe1.aarch64.rpm",
"poppler-devel-0.67.0-8.oe1.aarch64.rpm",
"poppler-qt5-0.67.0-8.oe1.aarch64.rpm"
],
"noarch": [
"poppler-glib-doc-0.67.0-8.oe1.noarch.rpm",
"poppler-help-0.67.0-8.oe1.noarch.rpm"
]
}
openEuler:22.03-LTS / poppler
Package
- Name
- poppler
- Purl
- pkg:rpm/openEuler/poppler&distro=openEuler-22.03-LTS
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed0.90.0-3.oe2203
Ecosystem specific
{
"src": [
"poppler-0.90.0-3.oe2203.src.rpm"
],
"x86_64": [
"poppler-cpp-devel-0.90.0-3.oe2203.x86_64.rpm",
"poppler-utils-0.90.0-3.oe2203.x86_64.rpm",
"poppler-qt5-0.90.0-3.oe2203.x86_64.rpm",
"poppler-glib-devel-0.90.0-3.oe2203.x86_64.rpm",
"poppler-cpp-0.90.0-3.oe2203.x86_64.rpm",
"poppler-0.90.0-3.oe2203.x86_64.rpm",
"poppler-devel-0.90.0-3.oe2203.x86_64.rpm",
"poppler-qt5-devel-0.90.0-3.oe2203.x86_64.rpm",
"poppler-debugsource-0.90.0-3.oe2203.x86_64.rpm",
"poppler-glib-0.90.0-3.oe2203.x86_64.rpm",
"poppler-debuginfo-0.90.0-3.oe2203.x86_64.rpm"
],
"aarch64": [
"poppler-debuginfo-0.90.0-3.oe2203.aarch64.rpm",
"poppler-cpp-devel-0.90.0-3.oe2203.aarch64.rpm",
"poppler-glib-devel-0.90.0-3.oe2203.aarch64.rpm",
"poppler-0.90.0-3.oe2203.aarch64.rpm",
"poppler-debugsource-0.90.0-3.oe2203.aarch64.rpm",
"poppler-qt5-0.90.0-3.oe2203.aarch64.rpm",
"poppler-glib-0.90.0-3.oe2203.aarch64.rpm",
"poppler-utils-0.90.0-3.oe2203.aarch64.rpm",
"poppler-cpp-0.90.0-3.oe2203.aarch64.rpm",
"poppler-qt5-devel-0.90.0-3.oe2203.aarch64.rpm",
"poppler-devel-0.90.0-3.oe2203.aarch64.rpm"
],
"noarch": [
"poppler-help-0.90.0-3.oe2203.noarch.rpm",
"poppler-glib-doc-0.90.0-3.oe2203.noarch.rpm"
]
}