SUSE-SU-2023:4562-1

Details

This update for poppler fixes the following issues:

CVE-2019-9545: Fixed an uncontrolled recursion issue that could cause a crash (bsc#1128114).
CVE-2022-37052: Fixed a crash that could be triggered when opening a crafted file (bsc#1214726).
CVE-2020-36023: Fixed a stack bugger overflow in FoFiType1C:cvtGlyph (bsc#1214256).

Affected Packages

SUSE:Linux Enterprise Module for Basesystem 15 SP4libpoppler89

Fixed in:

0.79.0-150200.3.26.1

SUSE:Linux Enterprise Module for Basesystem 15 SP4poppler

Fixed in:

0.79.0-150200.3.26.1

SUSE:Linux Enterprise Module for Basesystem 15 SP5libpoppler89

Fixed in:

0.79.0-150200.3.26.1

SUSE:Linux Enterprise Module for Basesystem 15 SP5poppler

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Proxy 4.2libpoppler-cpp0

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Proxy 4.2libpoppler-devel

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Proxy 4.2libpoppler-glib-devel

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Proxy 4.2libpoppler-glib8

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Proxy 4.2libpoppler89

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Proxy 4.2poppler

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Proxy 4.2poppler-tools

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Proxy 4.2typelib-1_0-Poppler-0_18

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Server 4.2libpoppler-cpp0

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Server 4.2libpoppler-devel

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Server 4.2libpoppler-glib-devel

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Server 4.2libpoppler-glib8

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Server 4.2libpoppler89

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Server 4.2poppler

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Server 4.2poppler-tools

Fixed in:

0.79.0-150200.3.26.1

SUSE:Manager Server 4.2typelib-1_0-Poppler-0_18

Fixed in:

0.79.0-150200.3.26.1

openSUSE:Leap 15.4libpoppler89

Fixed in:

0.79.0-150200.3.26.1

openSUSE:Leap 15.4libpoppler89-32bit

Fixed in:

0.79.0-150200.3.26.1

openSUSE:Leap 15.4poppler

Fixed in:

0.79.0-150200.3.26.1

References

REPORThttps://bugzilla.suse.com/1128114 REPORThttps://bugzilla.suse.com/1214256 REPORThttps://bugzilla.suse.com/1214726 WEBhttps://www.suse.com/security/cve/CVE-2019-9545 WEBhttps://www.suse.com/security/cve/CVE-2020-36023 WEBhttps://www.suse.com/security/cve/CVE-2022-37052 ADVISORYhttps://www.suse.com/support/update/announcement/2023/suse-su-20234562-1/

SUSE-SU-2023:4562-1

Details

Affected Packages

References

Upstream

Related

Ecosystems

Timeline