evince and poppler security and bug fix update

2020-10-0600:00:00

linux.oracle.com

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

evince
[3.28.2-10]

Do not try to use icon_view widget when in tree view mode
Resolves: #1610436
poppler
[0.26.5-43]
Fix crash on broken file in tilingPatternFill()
Resolves: #1801340

OSVersionArchitecturePackageVersionFilename
oracle linux7srcevince< 3.28.2-10.el7evince-3.28.2-10.el7.src.rpm
oracle linux7srcpoppler< 0.26.5-43.el7poppler-0.26.5-43.el7.src.rpm
oracle linux7aarch64evince< 3.28.2-10.el7evince-3.28.2-10.el7.aarch64.rpm
oracle linux7aarch64evince-browser-plugin< 3.28.2-10.el7evince-browser-plugin-3.28.2-10.el7.aarch64.rpm
oracle linux7aarch64evince-devel< 3.28.2-10.el7evince-devel-3.28.2-10.el7.aarch64.rpm
oracle linux7aarch64evince-dvi< 3.28.2-10.el7evince-dvi-3.28.2-10.el7.aarch64.rpm
oracle linux7aarch64evince-libs< 3.28.2-10.el7evince-libs-3.28.2-10.el7.aarch64.rpm
oracle linux7aarch64evince-nautilus< 3.28.2-10.el7evince-nautilus-3.28.2-10.el7.aarch64.rpm
oracle linux7aarch64poppler< 0.26.5-43.el7poppler-0.26.5-43.el7.aarch64.rpm
oracle linux7aarch64poppler-cpp< 0.26.5-43.el7poppler-cpp-0.26.5-43.el7.aarch64.rpm

OS	Version	Architecture	Package	Version	Filename
oracle linux	7	src	evince	< 3.28.2-10.el7	evince-3.28.2-10.el7.src.rpm
oracle linux	7	src	poppler	< 0.26.5-43.el7	poppler-0.26.5-43.el7.src.rpm
oracle linux	7	aarch64	evince	< 3.28.2-10.el7	evince-3.28.2-10.el7.aarch64.rpm
oracle linux	7	aarch64	evince-browser-plugin	< 3.28.2-10.el7	evince-browser-plugin-3.28.2-10.el7.aarch64.rpm
oracle linux	7	aarch64	evince-devel	< 3.28.2-10.el7	evince-devel-3.28.2-10.el7.aarch64.rpm
oracle linux	7	aarch64	evince-dvi	< 3.28.2-10.el7	evince-dvi-3.28.2-10.el7.aarch64.rpm
oracle linux	7	aarch64	evince-libs	< 3.28.2-10.el7	evince-libs-3.28.2-10.el7.aarch64.rpm
oracle linux	7	aarch64	evince-nautilus	< 3.28.2-10.el7	evince-nautilus-3.28.2-10.el7.aarch64.rpm
oracle linux	7	aarch64	poppler	< 0.26.5-43.el7	poppler-0.26.5-43.el7.aarch64.rpm
oracle linux	7	aarch64	poppler-cpp	< 0.26.5-43.el7	poppler-cpp-0.26.5-43.el7.aarch64.rpm