Oval Definition:oval:org.opensuse.security:def:79247
Revision Date:2018-10-08Version:1
Title:Security update for qpdf (Moderate)
Description:



This update for qpdf fixes the following issues:

qpdf was updated to 7.1.1.

Security issues fixed:

- CVE-2017-11627: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050577). - CVE-2017-11625: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050579). - CVE-2017-11626: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050578). - CVE-2017-11624: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050581). - CVE-2017-12595: Stack overflow when processing deeply nested arrays and dictionaries (bsc#1055960). - CVE-2017-9209: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040312). - CVE-2017-9210: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040313). - CVE-2017-9208: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040311).

* Check release notes for detailed bug fixes. * http://qpdf.sourceforge.net/files/qpdf-manual.html#ref.release-notes

Family:unixClass:patch
Status:Reference(s):1040311
1040312
1040313
1050577
1050578
1050579
1050581
1055960
CVE-2017-11624
CVE-2017-11625
CVE-2017-11626
CVE-2017-11627
CVE-2017-12595
CVE-2017-9208
CVE-2017-9209
CVE-2017-9210
SUSE-SU-2018:3066-1
Platform(s):SUSE Linux Enterprise Desktop 12 SP3
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Desktop 12 SP3 is installed
  • AND Package Information
  • cups-filters-1.0.58-19.2.3 is installed
  • OR cups-filters-cups-browsed-1.0.58-19.2.3 is installed
  • OR cups-filters-foomatic-rip-1.0.58-19.2.3 is installed
  • OR cups-filters-ghostscript-1.0.58-19.2.3 is installed
  • OR libqpdf18-7.1.1-3.3.4 is installed
    • BACK