USN-4042-1
- Source
- https://ubuntu.com/security/notices/USN-4042-1
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/USN-4042-1.json
- Related
-
- CVE-2017-9865
- CVE-2018-18897
- CVE-2018-20662
- CVE-2019-10018
- CVE-2019-10019
- CVE-2019-10021
- CVE-2019-10023
- CVE-2019-10872
- CVE-2019-10873
- CVE-2019-12293
- CVE-2019-9200
- CVE-2019-9631
- CVE-2019-9903
- Published
- 2019-06-27T13:29:23.845161Z
- Modified
- 2019-06-27T13:29:23.845161Z
- Summary
- poppler vulnerabilities
- Details
-
It was discovered that poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service, or possibly execute arbitrary code
- References
-
- https://ubuntu.com/security/notices/USN-4042-1
- https://ubuntu.com/security/CVE-2017-9865
- https://ubuntu.com/security/CVE-2018-18897
- https://ubuntu.com/security/CVE-2018-20662
- https://ubuntu.com/security/CVE-2019-10018
- https://ubuntu.com/security/CVE-2019-10019
- https://ubuntu.com/security/CVE-2019-10021
- https://ubuntu.com/security/CVE-2019-10023
- https://ubuntu.com/security/CVE-2019-10872
- https://ubuntu.com/security/CVE-2019-10873
- https://ubuntu.com/security/CVE-2019-12293
- https://ubuntu.com/security/CVE-2019-9200
- https://ubuntu.com/security/CVE-2019-9631
- https://ubuntu.com/security/CVE-2019-9903
Affected packages
Ubuntu:16.04:LTS / poppler
Package
- Name
- poppler
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed0.41.0-0ubuntu1.14
Ecosystem specific
{
"availability": "No subscription needed",
"binaries": [
{
"libpoppler-qt5-1": "0.41.0-0ubuntu1.14",
"libpoppler-glib-doc": "0.41.0-0ubuntu1.14",
"libpoppler-qt5-dev": "0.41.0-0ubuntu1.14",
"libpoppler-cpp-dev": "0.41.0-0ubuntu1.14",
"libpoppler-qt4-4": "0.41.0-0ubuntu1.14",
"libpoppler-glib8": "0.41.0-0ubuntu1.14",
"libpoppler-glib-dev": "0.41.0-0ubuntu1.14",
"libpoppler-qt4-dev": "0.41.0-0ubuntu1.14",
"libpoppler-cpp0": "0.41.0-0ubuntu1.14",
"libpoppler58": "0.41.0-0ubuntu1.14",
"gir1.2-poppler-0.18": "0.41.0-0ubuntu1.14",
"libpoppler-private-dev": "0.41.0-0ubuntu1.14",
"libpoppler-dev": "0.41.0-0ubuntu1.14",
"poppler-utils": "0.41.0-0ubuntu1.14"
}
]
}
Ubuntu:18.04:LTS / poppler
Package
- Name
- poppler
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0The exact introduced commit is unknownFixed0.62.0-2ubuntu2.9
Ecosystem specific
{
"availability": "No subscription needed",
"binaries": [
{
"gir1.2-poppler-0.18": "0.62.0-2ubuntu2.9",
"libpoppler-qt5-1": "0.62.0-2ubuntu2.9",
"libpoppler-glib-doc": "0.62.0-2ubuntu2.9",
"libpoppler73": "0.62.0-2ubuntu2.9",
"libpoppler-cpp-dev": "0.62.0-2ubuntu2.9",
"libpoppler-private-dev": "0.62.0-2ubuntu2.9",
"libpoppler-cpp0v5": "0.62.0-2ubuntu2.9",
"libpoppler-dev": "0.62.0-2ubuntu2.9",
"libpoppler-glib8": "0.62.0-2ubuntu2.9",
"libpoppler-glib-dev": "0.62.0-2ubuntu2.9",
"libpoppler-qt5-dev": "0.62.0-2ubuntu2.9",
"poppler-utils": "0.62.0-2ubuntu2.9"
}
]
}