USN-2958-1: poppler vulnerabilities<\/p>\n
2nd May, 2016<\/em><\/p>\n A security issue affects these releases of Ubuntu and its poppler could be made to crash or run programs if it opened a specially It was discovered that the poppler pdfseparate tool incorrectly handled It was discovered that poppler incorrectly parsed certain malformed PDF The problem can be corrected by updating your system to the following To update your system, please follow these instructions: In general, a standard system update will make all the necessary changes.<\/p>\n CVE-2013-4473<\/a>, <\/p>\n CVE-2013-4474<\/a>, <\/p>\n CVE-2015-8868<\/a><\/p>\n Source: USN-2958-1: poppler vulnerabilities<\/a><\/p>\n","protected":false},"excerpt":{"rendered":" USN-2958-1: poppler vulnerabilities Ubuntu Security Notice USN-2958-1 2nd May, 2016 poppler vulnerabilities A security issue affects these releases of Ubuntu and its derivatives: Ubuntu 15.10 Ubuntu 14.04 LTS Ubuntu 12.04 LTS Summary poppler could be made to crash or run programs if it opened a specially crafted file. Software description poppler – PDF rendering library Details It was discovered that the poppler pdfseparate tool incorrectly handledcertain filenames. A local attacker could use this issue to cause the toolto crash, resulting in a denial of service, or possibly execute arbitrarycode. This issue only applied to Ubuntu 12.04 LTS. (CVE-2013-4473,CVE-2013-4474) It was discovered that poppler incorrectly parsed certain malformed PDFdocuments. If a user or automated system were tricked into opening acrafted PDF file, an attacker could cause a denial of service or possiblyexecute arbitrary code with privileges of the user invoking the [ more… ]<\/a><\/p>\n<\/div>","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[586],"tags":[587],"class_list":["post-7342","post","type-post","status-publish","format-standard","hentry","category-ubuntu-usn","tag-ubuntu-usn"],"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/7342","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/comments?post=7342"}],"version-history":[{"count":1,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/7342\/revisions"}],"predecessor-version":[{"id":7343,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/posts\/7342\/revisions\/7343"}],"wp:attachment":[{"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/media?parent=7342"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/categories?post=7342"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jirak.net\/wp\/wp-json\/wp\/v2\/tags?post=7342"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}poppler vulnerabilities<\/h3>\n
\n derivatives:<\/p>\n\n
Summary<\/h3>\n
\ncrafted file.\n<\/p>\nSoftware description<\/h3>\n
\n
\n – PDF rendering library<\/p>\n<\/li>\n<\/ul>\nDetails<\/h3>\n
certain filenames. A local attacker could use this issue to cause the tool
to crash, resulting in a denial of service, or possibly execute arbitrary
code. This issue only applied to Ubuntu 12.04 LTS. (CVE-2013-4473<\/a>,
CVE-2013-4474<\/a>)<\/p>\n
documents. If a user or automated system were tricked into opening a
crafted PDF file, an attacker could cause a denial of service or possibly
execute arbitrary code with privileges of the user invoking the program.
(CVE-2015-8868<\/a>)<\/p>\nUpdate instructions<\/h3>\n
\npackage version:<\/p>\n\n
\n
\n 0.33.0-0ubuntu3.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.33.0-0ubuntu3.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.33.0-0ubuntu3.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.33.0-0ubuntu3.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.33.0-0ubuntu3.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.33.0-0ubuntu3.1<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.24.5-2ubuntu4.4<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.24.5-2ubuntu4.4<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.24.5-2ubuntu4.4<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.24.5-2ubuntu4.4<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.24.5-2ubuntu4.4<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.24.5-2ubuntu4.4<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.18.4-1ubuntu3.2<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.18.4-1ubuntu3.2<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.18.4-1ubuntu3.2<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.18.4-1ubuntu3.2<\/a>
\n <\/span>\n <\/dd>\n
\n
\n 0.18.4-1ubuntu3.2<\/a>
\n <\/span>\n <\/dd>\n<\/dl>\n
\nhttps:\/\/wiki.ubuntu.com\/Security\/Upgrades<\/a>.\n<\/p>\nReferences<\/h3>\n