USN-759-1 -- poppler vulnerabilities
|ID: oval:org.secpod.oval:def:700344||Date: (C)2011-05-13 (M)2017-11-27|
|Class: PATCH||Family: unix|
Will Dormann, Alin Rad Pop, Braden Thomas, and Drew Yao discovered that poppler contained multiple security issues in its JBIG2 decoder. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service or execute arbitrary code with privileges of the user invoking the program.