[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[SECURITY] [DLA 446-1] poppler security update



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

Package        : poppler
Version        : 0.18.4-6+deb7u1
CVE ID         : CVE-2015-8868
Debian Bug     : 822578

A heap buffer overflow vulnerability was found in the poppler library. A maliciously crafted file could cause the application to crash. The issue happens when "ExtGState" is not a valid blend mode.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
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=VrgL
-----END PGP SIGNATURE-----


Reply to: