Format: 1.8 Date: Wed, 26 Jun 2019 09:59:06 -0400 Source: poppler Binary: libpoppler73 libpoppler-dev libpoppler-private-dev libpoppler-glib8 libpoppler-glib-dev libpoppler-glib-doc gir1.2-poppler-0.18 libpoppler-qt5-1 libpoppler-qt5-dev libpoppler-cpp0v5 libpoppler-cpp-dev poppler-utils Architecture: armhf Version: 0.62.0-2ubuntu2.9 Distribution: bionic Urgency: medium Maintainer: Launchpad Build Daemon Changed-By: Marc Deslauriers Description: gir1.2-poppler-0.18 - GObject introspection data for poppler-glib libpoppler-cpp-dev - PDF rendering library -- development files (CPP interface) libpoppler-cpp0v5 - PDF rendering library (CPP shared library) libpoppler-dev - PDF rendering library -- development files libpoppler-glib-dev - PDF rendering library -- development files (GLib interface) libpoppler-glib-doc - PDF rendering library -- documentation for the GLib interface libpoppler-glib8 - PDF rendering library (GLib-based shared library) libpoppler-private-dev - PDF rendering library -- private development files libpoppler-qt5-1 - PDF rendering library (Qt 5 based shared library) libpoppler-qt5-dev - PDF rendering library -- development files (Qt 5 interface) libpoppler73 - PDF rendering library poppler-utils - PDF utilities (based on Poppler) Changes: poppler (0.62.0-2ubuntu2.9) bionic-security; urgency=medium . * SECURITY UPDATE: memory leak in GfxColorSpace::setDisplayProfile - debian/patches/CVE-2018-18897.patch: enforcing single initialization in poppler/GfxState.cc, qt5/src/poppler-qt5.h. - CVE-2018-18897 * SECURITY UPDATE: DoS via crafted PDF file - debian/patches/CVE-2018-20662.patch: check XRef's Catalog for being a Dict in utils/pdfunite.cc. - CVE-2018-20662 * SECURITY UPDATE: buffer over-read in downsample_row_box_filter - debian/patches/CVE-2019-9631-1.patch: compute correct coverage values for box filter in poppler/CairoRescaleBox.cc. - debian/patches/CVE-2019-9631-2.patch: constrain number of cycles in rescale filter in poppler/CairoRescaleBox.cc. - CVE-2019-9631 * SECURITY UPDATE: dict marking mishandling - debian/patches/CVE-2019-9903.patch: fix stack overflow on broken file in poppler/PDFDoc.cc. - CVE-2019-9903 * SECURITY UPDATE: heap-based buffer over-read - debian/patches/CVE-2019-10872.patch: restrict filling of overlapping boxes in splash/Splash.cc. - CVE-2019-10872 * SECURITY UPDATE: buffer over-read in JPXStream::init - debian/patches/CVE-2019-12293.patch: fail gracefully if not all components have the same WxH in poppler/JPEG2000Stream.cc. - CVE-2019-12293 Checksums-Sha1: 61b80f52f428a6e6a770b12e1c3a87a4c9c84d32 18472 gir1.2-poppler-0.18_0.62.0-2ubuntu2.9_armhf.deb 2e9d913d0ba0d988e5771825f828f1dfe0dcc646 8676 libpoppler-cpp-dev_0.62.0-2ubuntu2.9_armhf.deb 440907f5a5498d60a872fd3d9964ab253fa150f5 450104 libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 7e9448b334263d95c062b65f92a138e597461fb0 23240 libpoppler-cpp0v5_0.62.0-2ubuntu2.9_armhf.deb b50ea9a5111d815966e309250529235052e50c2f 4620 libpoppler-dev_0.62.0-2ubuntu2.9_armhf.deb b88eab4f81d5a7ce77eef30a21174393a96fc247 47720 libpoppler-glib-dev_0.62.0-2ubuntu2.9_armhf.deb 6e63f45c29dab2898abcc1537383bf4da494e3aa 848372 libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 344d12f0791a88e4c5f2354f8d637747c1844683 90904 libpoppler-glib8_0.62.0-2ubuntu2.9_armhf.deb 60b351dfacccfac69c655ac538b0308ad4098366 169080 libpoppler-private-dev_0.62.0-2ubuntu2.9_armhf.deb bfabe6dc334ea5cacf47cb5cc6b49d5a7708bbe2 2852532 libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 9cd631e37dfa838ac003d5c2465d456a89716bd8 121756 libpoppler-qt5-1_0.62.0-2ubuntu2.9_armhf.deb 7962b540abda4ed1ba1306435c0db9b1bd937fcf 32292 libpoppler-qt5-dev_0.62.0-2ubuntu2.9_armhf.deb d309184a0156c4bd09016fc79488bdd3de4b10c3 2934660 libpoppler73-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 45010cab79ff461840ee03477cc960cabcf03fd2 675364 libpoppler73_0.62.0-2ubuntu2.9_armhf.deb d594c187d5eb4d9eb6dadd0b135ac3a7dda28a6f 1130712 poppler-utils-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 33920d60c71271c788a559e5fab839f37c596a95 133072 poppler-utils_0.62.0-2ubuntu2.9_armhf.deb c9fc18a5c761745276eab67de58b1507eace755a 18858 poppler_0.62.0-2ubuntu2.9_armhf.buildinfo Checksums-Sha256: 053b8f217a879b78af66a46215d646eaf3932905ab05592409d9cea52bfa0e43 18472 gir1.2-poppler-0.18_0.62.0-2ubuntu2.9_armhf.deb fd72a1dd90c2204023f72bdcc4a097519fd20d231bcfedba79d595c0d1fe154a 8676 libpoppler-cpp-dev_0.62.0-2ubuntu2.9_armhf.deb 725009d5ef6b18004b51c1c6398d6af9a5b28e8a1294465f8096afa886f6c430 450104 libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb e132776310020e12a1198ddb5dd9dbf0b47929631074d273a3a7e16bf446ddf8 23240 libpoppler-cpp0v5_0.62.0-2ubuntu2.9_armhf.deb 22c678e712b4749f7022565c6aedbf1227596b67c29c1c8900e3398899bb3b6a 4620 libpoppler-dev_0.62.0-2ubuntu2.9_armhf.deb 576cfa405a1c8e069eb7ffb61f8e7f2b7466b8213b5a35e48c4ff984a0fc629b 47720 libpoppler-glib-dev_0.62.0-2ubuntu2.9_armhf.deb f88f05a161b0e78b9bbf991d9abf7257cc896bd4bfba2de0d6c23f4766ab1970 848372 libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb b7d7d7eccac54d48dd8dcffeae11d6598cc86006b1e2b5ce4b2f54d3ed7a8246 90904 libpoppler-glib8_0.62.0-2ubuntu2.9_armhf.deb 7ac7e424b5caf39b065465adaa0a19167580dce76795864f5413884738cd6fb6 169080 libpoppler-private-dev_0.62.0-2ubuntu2.9_armhf.deb 1fa23af4557eaf3cea1ed8c4e6369b86ea14122e45c6ddcfe0ca7df0cc790cfb 2852532 libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb f612fcf5b54d45a29db81756d4552c13b7946e5a91f53d3b60bd9d1a996f09b6 121756 libpoppler-qt5-1_0.62.0-2ubuntu2.9_armhf.deb 730904501d12824b91cd0afa06cf6392b259d55481d4755861ea4b3f1b5820fb 32292 libpoppler-qt5-dev_0.62.0-2ubuntu2.9_armhf.deb 9acf2679cf9b6caa9f4f0c321efe2bc3ad862524f1667e136ceb00162701245f 2934660 libpoppler73-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb b8adb14fdc9fc536e03b93a440523fd16656cdb99d4ee996aaafb93afcc995bf 675364 libpoppler73_0.62.0-2ubuntu2.9_armhf.deb 4b2b187d4be3703db67a80f0ba3fbd5ea3b1e80982b5e40bdc30d5bb51a2f669 1130712 poppler-utils-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb fe74e83079caff1ee9b4d8d6236a4927b102c54ab3889dfb3da13ba516587a99 133072 poppler-utils_0.62.0-2ubuntu2.9_armhf.deb 4c1d875a65f4fc32b69b0e43eca70b4878aa10326d50a01e63d0afb493b9236d 18858 poppler_0.62.0-2ubuntu2.9_armhf.buildinfo Files: 631d3d7bc9cf0e7ff750865b156bb261 18472 introspection optional gir1.2-poppler-0.18_0.62.0-2ubuntu2.9_armhf.deb cfd9a29f33dc28e4374a26c1e768a120 8676 libdevel optional libpoppler-cpp-dev_0.62.0-2ubuntu2.9_armhf.deb 21cd7d346bcfe653315fc33d2498167b 450104 debug optional libpoppler-cpp0v5-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb e608a0bbc73ead7e497851bc1b73a907 23240 libs optional libpoppler-cpp0v5_0.62.0-2ubuntu2.9_armhf.deb 270c32819ddf9d8c416fd11b01f94db3 4620 libdevel optional libpoppler-dev_0.62.0-2ubuntu2.9_armhf.deb 4573ab40c60a8cfd302bdbac2b3a514b 47720 libdevel optional libpoppler-glib-dev_0.62.0-2ubuntu2.9_armhf.deb 4bef86bb3d5e5bc9e2664e0d55f146f0 848372 debug optional libpoppler-glib8-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 2c03a4c4f95c002ad81dca9aad53f453 90904 libs optional libpoppler-glib8_0.62.0-2ubuntu2.9_armhf.deb 330d1952e26b3a4567b8042d99d7bac0 169080 libdevel optional libpoppler-private-dev_0.62.0-2ubuntu2.9_armhf.deb 82edcc2b1d418253a74e386985b18e81 2852532 debug optional libpoppler-qt5-1-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 09fa28c4375d67027272df2f34fac637 121756 libs optional libpoppler-qt5-1_0.62.0-2ubuntu2.9_armhf.deb 49f8d404c68d91939e99df6a2fc919a2 32292 libdevel optional libpoppler-qt5-dev_0.62.0-2ubuntu2.9_armhf.deb f3781e16045b19d66d7827838ab99304 2934660 debug optional libpoppler73-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 050b66e5b4241941ae191653994eb55f 675364 libs optional libpoppler73_0.62.0-2ubuntu2.9_armhf.deb 10021d752c173ed397e32ca5c8b91496 1130712 debug optional poppler-utils-dbgsym_0.62.0-2ubuntu2.9_armhf.ddeb 7403e2d7d339a774eb8c523d643fe2a5 133072 utils optional poppler-utils_0.62.0-2ubuntu2.9_armhf.deb e7877abdd445ba8c738ac8a40e3914c9 18858 devel optional poppler_0.62.0-2ubuntu2.9_armhf.buildinfo Original-Maintainer: Debian freedesktop.org maintainers