MGASA-2023-0348

See a problem?
Please try reporting it to the source first.

Source

https://advisories.mageia.org/MGASA-2023-0348.html

Import Source

https://advisories.mageia.org/MGASA-2023-0348.json

JSON Data

https://api.test.osv.dev/v1/vulns/MGASA-2023-0348

Related

CVE-2023-34872

Published

2023-12-16T21:14:19Z

Modified

2023-12-16T21:02:09Z

Summary

Updated poppler packages fix a security vulnerability

Details

A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open. (CVE-2023-34872) This update fixes that issue.

References

Credits

- Mageia - COORDINATOR
- - https://wiki.mageia.org/en/Packages_Security_Team

Affected packages

Mageia:9 / poppler

Package

Name: poppler
Purl: pkg:rpm/mageia/poppler?distro=mageia-9

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

23.02.0-1.1.mga9

Ecosystem specific

{
    "section": "core"
}