poppler: CVE-2024-6239 - linux/meta-openembedded.git - Mirror of git.openembedded.org/meta-openembedded

diff options

author	Yogita Urade <yogita.urade@windriver.com>	2024-08-21 09:05:35 +0000
committer	Khem Raj <raj.khem@gmail.com>	2024-08-21 08:45:47 -0700
commit	4534a0a07774bfcc9b4f8fc1fcb5859f2c8573aa (patch)
tree	63fa57eebd228f079c0aefdf6b65b93a7624f506 /meta-python/recipes-devtools/python/python3-pydbus/0003-Support-transformation-between-D-Bus-errors-and-exce.patch
parent	0edc4266acdd5d06e89c6f2491f511877910b455 (diff)
download	meta-openembedded-4534a0a07774bfcc9b4f8fc1fcb5859f2c8573aa.tar.gz

poppler: CVE-2024-6239

A flaw was found in the Poppler's Pdfinfo utility. This issue occurs when using -dests parameter with pdfinfo utility. By using certain malformed input files, an attacker could cause the utility to crash, leading to a denial of service. CVE-2024-6239-0002 is the CVE fix and CVE-2024-6239-0001 is dependent commit to fix the CVE. Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-6239 Upstream patch: https://gitlab.freedesktop.org/poppler/poppler/-/commit/0554731052d1a97745cb179ab0d45620589dd9c4 https://gitlab.freedesktop.org/poppler/poppler/-/commit/fc1c711cb5f769546c6b31cc688bf0ee7f0c1dbc Signed-off-by: Yogita Urade <yogita.urade@windriver.com> Signed-off-by: Khem Raj <raj.khem@gmail.com>

Diffstat (limited to 'meta-python/recipes-devtools/python/python3-pydbus/0003-Support-transformation-between-D-Bus-errors-and-exce.patch')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: