You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa mingw-poppler

Sigurnosni nedostaci programskog paketa mingw-poppler

by ncert - 0

——————————————————————————–
Fedora Update Notification
FEDORA-2017-eadc5f410e
2017-06-09 03:04:57.857898
——————————————————————————–

Name : mingw-poppler
Product : Fedora 24
Version : 0.41.0
Release : 2.fc24
URL : http://poppler.freedesktop.org/
Summary : MinGW Windows Poppler library
Description :
MinGW Windows Poppler library.

——————————————————————————–
Update Information:

This update fixes CVEs 2017-7511 and 2017-9083.
——————————————————————————–
References:

[ 1 ] Bug #1456829 – CVE-2017-7511 mingw-poppler: poppler: Null pointer dereference in pdfunite via crafted documents [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1456829
[ 2 ] Bug #1453200 – CVE-2017-9083 mingw-poppler: poppler: Null pointer dereference in the JPXStream::readUByte function [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1453200
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade mingw-poppler’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

 

——————————————————————————–
Fedora Update Notification
FEDORA-2017-0ee7b8dd2a
2017-06-09 03:05:23.560908
——————————————————————————–

Name        : mingw-poppler
Product     : Fedora 25
Version     : 0.45.0
Release     : 2.fc25
URL         : http://poppler.freedesktop.org/
Summary     : MinGW Windows Poppler library
Description :
MinGW Windows Poppler library.

——————————————————————————–
Update Information:

This update fixes CVEs 2017-7511 and 2017-9083.
——————————————————————————–
References:

  [ 1 ] Bug #1456829 – CVE-2017-7511 mingw-poppler: poppler: Null pointer dereference in pdfunite via crafted documents [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1456829
  [ 2 ] Bug #1453200 – CVE-2017-9083 mingw-poppler: poppler: Null pointer dereference in the JPXStream::readUByte function [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1453200
——————————————————————————–

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade mingw-poppler’ at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
——————————————————————————–
_______________________________________________
package-announce mailing list — package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

 

 

ncert
Top
More in Preporuke
Sigurnosni nedostaci programskog paketa bind

Otkriveni su sigurnosni nedostaci u programskom paketu bind za HP-UX. Otkriveni nedostaci potencijalnim udaljenim napadačima omogućuju izazivanje DoS stanja. Savjetuje...

Close