Debian Patches
Status for poppler/25.03.0-9
| Patch | Description | Author | Forwarded | Bugs | Origin | Last update |
|---|---|---|---|---|---|---|
| CVE-2025-32364.patch | [PATCH] PSStack::roll: Protect against doing int = -INT_MIN | Albert Astals Cid <aacid@kde.org> | no | upstream 25.04 | 2025-03-24 | |
| CVE-2025-32365.patch | [PATCH] Move isOk check to inside JBIG2Bitmap::combine | Albert Astals Cid <aacid@kde.org> | no | upstream 25.04 | 2025-03-31 | |
| CVE-2025-43903.patch | Properly verify adbe.pkcs7.sha1 signatures. For signatures with non-empty encapsulated content (typically adbe.pkcs7.sha1), we only compared hash values and never actually checked SignatureValue within SignerInfo. The bug introduced by c7c0207b1cfe49a4353d6cda93dbebef4508138f made trivial signature forgeries possible. Fix this by calling NSS_CMSSignerInfo_Verify() after the hash values compare equal. |
=?UTF-8?q?Juraj=20=C5=A0arinay?= <juraj@sarinay.com> | no | upstream 25.04.0 | 2025-03-06 | |
| CVE-2025-52886.patch | [PATCH] Limit ammount of annots per document/page | Sune Vuorela <sune@vuorela.dk> | no | 2025-06-03 | ||
| CVE-2025-50420.patch | [PATCH] Fix crash in pdfseparate Don't continue recursing in PDFDoc::mark* if things looks a bit weirder than expected |
Sune Vuorela <sune@vuorela.dk> | no | 2025-07-29 |
All known versions for source package 'poppler'
- 25.03.0-9 (sid)
- 25.03.0-7 (forky)
- 25.03.0-5 (trixie)
- 22.12.0-2+deb12u1 (bookworm)