poppler -- several vulnerabilities

2013-07-10T00:00:00
ID DSA-2719
Type debian
Reporter Debian
Modified 2013-07-10T00:00:00

Description

Multiple vulnerabilities were discovered in the poppler PDF rendering library.

Multiple invalid memory access issues, which could potentially lead to arbitrary code execution if the user were tricked into opening a malformed PDF document.

An uninitialized memory issue, which could potentially lead to arbitrary code execution if the user were tricked into opening a malformed PDF document.

For the oldstable distribution (squeeze), these problems have been fixed in version 0.12.4-1.2+squeeze3.

For the stable (wheezy), testing (jessie), and unstable (sid) distributions, these problems have been fixed in version 0.18.4-6.

We recommend that you upgrade your poppler packages.