SUSE-SU-2023:4562-1

Details

This update for poppler fixes the following issues:

CVE-2019-9545: Fixed an uncontrolled recursion issue that could cause a crash (bsc#1128114).
CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file (bsc#1214726).
CVE-2020-36023: Fixed a stack bugger overflow in FoFiType1C:cvtGlyph (bsc#1214256).

Affected Packages

libpoppler89

SUSE Linux Enterprise Module for Basesystem 15 SP4SUSE Linux Enterprise Module for Basesystem 15 SP5SUSE Manager Proxy 4.2SUSE Manager Server 4.2openSUSE Leap 15.4

Fixed in:

0.79.0-150200.3.26.1

poppler

SUSE Linux Enterprise Module for Basesystem 15 SP4SUSE Linux Enterprise Module for Basesystem 15 SP5SUSE Manager Proxy 4.2SUSE Manager Server 4.2openSUSE Leap 15.4

Fixed in:

0.79.0-150200.3.26.1

libpoppler-cpp0

SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.79.0-150200.3.26.1

libpoppler-devel

SUSE Manager Proxy 4.2SUSE Manager Server 4.2

Fixed in:

0.79.0-150200.3.26.1

libpoppler-glib-devel

SUSE Manager Proxy 4.2SUSE Manager Server 4.2