[DLA 24-1] poppler security update

To: debian-lts-announce@lists.debian.org
Subject: [DLA 24-1] poppler security update
From: Raphael Geissert <geissert@debian.org>
Date: Thu, 31 Jul 2014 13:24:12 +0200
Message-id: <[🔎] 25586826.1A6h9HrCQ1@eee>
Mail-followup-to: debian-lts@lists.debian.org
Reply-to: debian-lts@lists.debian.org

Package        : poppler
Version        : 0.12.4-1.2+squeeze4
CVE ID         : CVE-2010-5110
Debian Bug     : 722705

It was discovered that poppler did return program execution to the
libjpeg library under error conditions, which is not expected by the
library and results in application crash and possibly code execution.

Attachment: signature.asc
Description: This is a digitally signed message part.

Reply to:

debian-lts-announce@lists.debian.org
Raphael Geissert (on-list)
Raphael Geissert (off-list)

Prev by Date: [DLA 23-1] nss security update
Next by Date: [DLA 27-1] file security update
Previous by thread: [DLA 23-1] nss security update
Next by thread: [DLA 27-1] file security update
Index(es):
- Date
- Thread