[ubuntu/eoan-proposed] poppler 0.76.1-0ubuntu4 (Accepted)
Marc Deslauriers
marc.deslauriers at ubuntu.com
Tue Jun 25 19:38:19 UTC 2019
poppler (0.76.1-0ubuntu4) eoan; urgency=medium
* SECURITY UPDATE: heap-based buffer over-read
- debian/patches/CVE-2019-10872.patch: restrict filling of overlapping
boxes in splash/Splash.cc.
- CVE-2019-10872
Date: Tue, 25 Jun 2019 15:13:54 -0400
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
https://launchpad.net/ubuntu/+source/poppler/0.76.1-0ubuntu4
-------------- next part --------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
Format: 1.8
Date: Tue, 25 Jun 2019 15:13:54 -0400
Source: poppler
Architecture: source
Version: 0.76.1-0ubuntu4
Distribution: eoan
Urgency: medium
Maintainer: Ubuntu Developers <ubuntu-devel-discuss at lists.ubuntu.com>
Changed-By: Marc Deslauriers <marc.deslauriers at ubuntu.com>
Changes:
poppler (0.76.1-0ubuntu4) eoan; urgency=medium
.
* SECURITY UPDATE: heap-based buffer over-read
- debian/patches/CVE-2019-10872.patch: restrict filling of overlapping
boxes in splash/Splash.cc.
- CVE-2019-10872
Checksums-Sha1:
52121962dd54a5f63c5cb7cb86ab7883460cace3 3379 poppler_0.76.1-0ubuntu4.dsc
b4733a0779e86f759d0f13830b6295effe059a00 36924 poppler_0.76.1-0ubuntu4.debian.tar.xz
aa3d8ad00be51afcd13a51a89757b760bfa06d6f 14872 poppler_0.76.1-0ubuntu4_source.buildinfo
Checksums-Sha256:
e72b851f72508cf292b0d22744ed9c029b3e19811afb8872cee89a2106ba0f80 3379 poppler_0.76.1-0ubuntu4.dsc
befeb2deed17f612b776819c55ae4d2c0bf1460b7d726f5a48cb1bcfd885728d 36924 poppler_0.76.1-0ubuntu4.debian.tar.xz
e6904641cbcfa3025d5d80525ec803d0c917d672565483552906cd4d83494f05 14872 poppler_0.76.1-0ubuntu4_source.buildinfo
Files:
48cf09c297a3577aea590d33dd1c3f16 3379 devel optional poppler_0.76.1-0ubuntu4.dsc
784462651855d6d04294431fb0a48097 36924 devel optional poppler_0.76.1-0ubuntu4.debian.tar.xz
2f3a942ae74e4e65d55650ebeab16d00 14872 devel optional poppler_0.76.1-0ubuntu4_source.buildinfo
Original-Maintainer: Debian freedesktop.org maintainers <pkg-freedesktop-maintainers at lists.alioth.debian.org>
-----BEGIN PGP SIGNATURE-----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=qSSh
-----END PGP SIGNATURE-----
More information about the Eoan-changes
mailing list