Ubuntu has issued an advisory on December 4: https://usn.ubuntu.com/3837-1/ It fixes one issue we haven't previously mentioned.
Ubuntu issued an advisory on December 11 to fix a regression: https://usn.ubuntu.com/3837-2/
Assigning to all packagers collectively, since there is no registered maintainer for this package. Also CC'ing some committers.
CC: (none) => geiger.david68210, marja11, nicolas.salguero, smelrorAssignee: bugsquad => pkg-bugs
Suggested advisory: ======================== The updated packages fix a security vulnerability: Poppler before 0.70.0 has a NULL pointer dereference in _poppler_attachment_new when called from poppler_annot_file_attachment_get_attachment. (CVE-2018-19149) References: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-19149 https://usn.ubuntu.com/3837-2/ ======================== Updated packages in core/updates_testing: ======================== poppler-0.52.0-3.10.mga6 lib(64)poppler66-0.52.0-3.10.mga6 lib(64)poppler-devel-0.52.0-3.10.mga6 lib(64)poppler-cpp0-0.52.0-3.10.mga6 lib(64)poppler-qt4-devel-0.52.0-3.10.mga6 lib(64)poppler-qt5-devel-0.52.0-3.10.mga6 lib(64)poppler-qt4_4-0.52.0-3.10.mga6 lib(64)poppler-qt5_1-0.52.0-3.10.mga6 lib(64)poppler-glib8-0.52.0-3.10.mga6 lib(64)poppler-gir0.18-0.52.0-3.10.mga6 lib(64)poppler-glib-devel-0.52.0-3.10.mga6 lib(64)poppler-cpp-devel-0.52.0-3.10.mga6 from SRPMS: poppler-0.52.0-3.10.mga6.src.rpm
CVE: (none) => CVE-2018-19149Status: NEW => ASSIGNEDAssignee: pkg-bugs => qa-bugs
Real hardware, Intel Core 2 Duo, Intel graphics, 64-bit Plasma system. Packages installed cleanly. Tried several pdf readers, printed a page or two on an HP inkjet printer. No regressions noted. Looks OK for 64-bit.
CC: (none) => andrewsfarmWhiteboard: (none) => MGA6-64-OK
Mageia 6 x64. Trying a PoC. From the CVE, 1st reference https://gitlab.freedesktop.org/poppler/poppler/issues/664 says "1. Open NullPointerDeference.h_134 with evince. 2. Segmentation fault (core dumped)" The test file is at: https://gitlab.freedesktop.org/poppler/poppler/uploads/64ee53478f55bbc8f0e8ba955521ad25/NullPointerDeference.h_134 No other CVE refs have a PoC. BEFORE update: poppler-0.52.0-3.9.mga6 etc $ evince Desktop/NullPointerDeference.h_134 Segmentation fault (core dumped) ------------- AFTER update: - lib64poppler-cpp0-0.52.0-3.10.mga6.x86_64 - lib64poppler-glib8-0.52.0-3.10.mga6.x86_64 - lib64poppler-qt5_1-0.52.0-3.10.mga6.x86_64 - lib64poppler66-0.52.0-3.10.mga6.x86_64 - poppler-0.52.0-3.10.mga6.x86_64 $ evince Desktop/NullPointerDeference.h_134 (evince:29446): Poppler-WARNING **: Missing stream object for embedded file Segmentation fault (core dumped) Not the same, at least. But - is it Evince crashing, rather than Poppler? Advisorying & validating anyway thanks to TJ's tests.
Keywords: (none) => advisory, validated_updateCC: (none) => lewyssmith, sysadmin-bugs
An update for this issue has been pushed to the Mageia Updates repository. https://advisories.mageia.org/MGASA-2018-0498.html
Status: ASSIGNED => RESOLVEDResolution: (none) => FIXED