==========================================================================
Ubuntu Security Notice USN-7426-2
April 09, 2025
poppler vulnerabilities
==========================================================================
A security issue affects these releases of Ubuntu and its derivatives:
- Ubuntu 18.04 LTS
- Ubuntu 16.04 LTS
Summary:
poppler could be made to crash if it opened a specially crafted PDF file.
Software Description:
- poppler: PDF rendering library
Details:
USN-7426-1 fixed several vulnerabilities in poppler. This update provides
the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.
Original advisory details:
It was discovered that poppler incorrectly handled memory when opening
certain PDF files. An attacker could possibly use this issue to cause
poppler to crash, resulting in a denial of service.
Update instructions:
The problem can be corrected by updating your system to the following
package versions:
Ubuntu 18.04 LTS
libpoppler73 0.62.0-2ubuntu2.14+esm5
Available with Ubuntu Pro
poppler-utils 0.62.0-2ubuntu2.14+esm5
Available with Ubuntu Pro
Ubuntu 16.04 LTS
libpoppler58 0.41.0-0ubuntu1.16+esm6
Available with Ubuntu Pro
poppler-utils 0.41.0-0ubuntu1.16+esm6
Available with Ubuntu Pro
In general, a standard system update will make all the necessary changes.
References:
https://ubuntu.com/security/notices/USN-7426-2
https://ubuntu.com/security/notices/USN-7426-1
CVE-2025-32364, CVE-2025-32365
No comments:
Post a Comment