Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > December 2005 > Fedora Update Notification - FEDORA-2005-1171: Fedora Core 4 poppler

December 2005

Fedora Update Notification - FEDORA-2005-1171: Fedora Core 4 poppler

ID: 01118
Ref: 1050/2005
Date: 20 December 2005:12:10:05
Version: 1
Title: Fedora Update Notification - FEDORA-2005-1171: Fedora Core 4 poppler
Abstract: Poppler, a PDF rendering library, it's a fork of the xpdf PDF viewer developed by Derek Noonburg of Glyph and Cog, LLC.
Vendors affected: Fedora
Operating systems affected: Fedora
Applications affected: Fedora
Title
=====

Fedora Update Notification - FEDORA-2005-1171: Fedora Core 4 poppler

Detail
======

Poppler, a PDF rendering library, it's a fork of the xpdf PDF
viewer developed by Derek Noonburg of Glyph and Cog, LLC.

- ---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2005-1171
2005-12-19
- ---------------------------------------------------------------------

Product : Fedora Core 4
Name : poppler
Version : 0.4.3
Release : 1.3
Summary : PDF rendering library
Description :
Poppler, a PDF rendering library, it's a fork of the xpdf PDF
viewer developed by Derek Noonburg of Glyph and Cog, LLC.

- ---------------------------------------------------------------------
Update Information:

Several more flaws were discovered in Xpdf, which poppler is
based on. An attacker could construct a carefully crafted
PDF file that could cause poppler to crash or possibly
execute arbitrary code when opened. The Common
Vulnerabilities and Exposures project assigned the name
CAN-2005-3193 to these issues.

- ---------------------------------------------------------------------
* Fri Dec 16 2005 Kristian Høgsberg 0.4.3-1.3
- - Add remaining bits of CVS-2005-3191 fix.

* Tue Dec 13 2005 Kristian Høgsberg 0.4.3-1.2
- - Add missing build requires.

* Mon Dec 12 2005 Kristian Høgsberg 0.4.3-1.1
- - Update to 0.4.3.


- ---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/4/

dead2565946464bc75b95d71039c701c SRPMS/poppler-0.4.3-1.3.src.rpm
12ad1eb376b4517c18307fdaf1f15aec ppc/poppler-0.4.3-1.3.ppc.rpm
44b4f92350fde34b3df07a157e260cb8 ppc/poppler-devel-0.4.3-1.3.ppc.rpm
d3b02a1e7806eb457e8a915559b20036 ppc/debug/poppler-debuginfo-0.4.3-1.3.ppc.rpm
c174e6d62873770eaab179c46ef2f9d2 x86_64/poppler-0.4.3-1.3.x86_64.rpm
b95588155c8b7af41ba8017b6905d7e6 x86_64/poppler-devel-0.4.3-1.3.x86_64.rpm
e57f57990d9c996fad99dd2484f7d9be x86_64/debug/poppler-debuginfo-0.4.3-1.3.x86_64.rpm
e4dc688bfac95202607148a0615b0776 i386/poppler-0.4.3-1.3.i386.rpm
7a16f6b1d327bda409d750c13f606114 i386/poppler-devel-0.4.3-1.3.i386.rpm
014ce2b38ecd7ae84968385d801b7a87 i386/debug/poppler-debuginfo-0.4.3-1.3.i386.rpm

This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
- ---------------------------------------------------------------------

- --
fedora-announce-list mailing list
fedora-announce-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-announce-list
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |