poppler: fix CVE-2025-32365 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Yogita Urade <yogita.urade@windriver.com>	2025-04-17 11:23:53 +0000
committer	Armin Kuster <akuster808@gmail.com>	2025-05-17 12:20:27 -0600
commit	a0b54655b573eb627ba4cb7453ce8f856e4cbe33 (patch)
tree	96dfab663c1cd959653ba507492f7ee83352251b /meta-python/recipes-devtools/python/python3-h5py
parent	7c900fa798cfd8cc10c4ed41f7f025fc03b8fbc7 (diff)
download	meta-openembedded-a0b54655b573eb627ba4cb7453ce8f856e4cbe33.tar.gz

poppler: fix CVE-2025-32365

Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check. Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-32365 Upstream patch: https://gitlab.freedesktop.org/poppler/poppler/-/commit/1f151565bbca5be7449ba8eea6833051cc1baa41 Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Armin Kuster <akuster808@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-h5py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: