[Oraclevm-errata] OVMSA-2017-0147 Moderate: Oracle VM 3.3 poppler security update

Errata Announcements for Oracle VM oraclevm-errata at oss.oracle.com
Thu Aug 31 15:56:43 PDT 2017


Oracle VM Security Advisory OVMSA-2017-0147

The following updated rpms for Oracle VM 3.3 have been uploaded to the 
Unbreakable Linux Network:

x86_64:
poppler-0.12.4-12.el6_9.x86_64.rpm
poppler-utils-0.12.4-12.el6_9.x86_64.rpm


SRPMS:
http://oss.oracle.com/oraclevm/server/3.3/SRPMS-updates/poppler-0.12.4-12.el6_9.src.rpm



Description of changes:

[0.12.4-12]
- Resolves: rhbz#1479815 CVE-2017-9776

[0.12.4-11]
- Don't crash on streams without Length
- Resolves: #1302365

[0.12.4-10]
- Use better default pixel size for printing of 0 width lines
- Resolves: #1316163

[0.12.4-9]
- Identification of fonts directly from streams and files
- Resolves: #1208719

[0.12.4-8]
- Embed type1 fonts to PostScript files correctly
- Resolves: #1232210

[0.12.4-7]
- Fix lines disappearing when selecting paragraph
- Resolves: #614824

[0.12.4-6]
- Silence illegal entry in bfrange block in ToUnicode CMap
- Resolves: #710816

[0.12.4-5]
- Fix captions of push button fields.
- Resolves: #1191907

[0.12.4-4]
- Add poppler-0.12.4-CVE-2010-3702.patch
     (Properly initialize parser)
- Add poppler-0.12.4-CVE-2010-3703.patch
     (Properly initialize stack)
- Add poppler-0.12.4-CVE-2010-3704.patch
     (Fix crash in broken pdf (code < 0))
- Resolves: #639860




More information about the Oraclevm-errata mailing list