Package: poppler / 0.71.0-6

Metadata

Package Version Patches format
poppler 0.71.0-6 3.0 (quilt)

Patch series

view the series file
Patch File delta Description
glib Don t create PopplerInputStream with length 0.patch | (download)

glib/poppler-document.cc | 9 8 + 1 - 0 !
1 file changed, 8 insertions(+), 1 deletion(-)

 glib: don't create popplerinputstream with length 0

Since commit a59f6164, PopplerInputStream requires a nonzero length.

Loosely based on an earlier patch by Kouhei Sutou. This version adds
support for length == -1, which is documented to work.

Bug: https://gitlab.freedesktop.org/poppler/poppler/issues/414
Bug-Debian: https://bugs.debian.org/896596
page ustring.patch | (download)

cpp/poppler-page.cpp | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [patch] cpp: fix page::text_list encoding issue

Text from TextoutputDev always comes in UTF-8

Well it comes in GlobalParams::textEncoding but that is UTF-8 and we
don't let people change it

CVE 2018 16646 1.patch | (download)

poppler/Parser.cc | 15 15 + 0 - 0 !
poppler/XRef.h | 1 1 + 0 - 0 !
2 files changed, 16 insertions(+)

 [patch] avoid cycles in pdf parsing

Mark objects being processed in Parser::makeStream() as being processed
and check the mark when entering this method to avoid processing
of the same object recursively.

CVE 2018 16646 2.patch | (download)

poppler/Parser.cc | 2 1 + 1 - 0 !
1 file changed, 1 insertion(+), 1 deletion(-)

 [patch] initialize entry


CVE 2018 16646 3.patch | (download)

poppler/Parser.cc | 4 4 + 0 - 0 !
1 file changed, 4 insertions(+)

 [patch] parser::makestream: fix crash on malformed files

fixes oss-fuzz/11244

CVE 2018 20481.patch | (download)

poppler/XRef.cc | 27 21 + 6 - 0 !
1 file changed, 21 insertions(+), 6 deletions(-)

 [patch] do not try to parse into unallocated xref entry and return
 pointer to dummy entry instead. Closes #692 and oss-fuzz/12330


CVE 2018 20551.patch | (download)

poppler/Annot.cc | 24 13 + 11 - 0 !
1 file changed, 13 insertions(+), 11 deletions(-)

 [patch] do not try to construct invalid rich media annotation assets.
 Closes #703


CVE 2018 20662.patch | (download)

utils/pdfunite.cc | 12 9 + 3 - 0 !
1 file changed, 9 insertions(+), 3 deletions(-)

 [patch] pdfunite: check xref's catalog for being a dict

Check whether Catalog from XRef is Dict for each document
passed to pdfunite and return error if not.

https://gitlab.freedesktop.org/poppler/poppler/issues/706

CVE 2019 7310.patch | (download)

poppler/XRef.cc | 5 5 + 0 - 0 !
1 file changed, 5 insertions(+)

 [patch] also defend against requests for negative xref indices.
 oss-fuzz/12797


CVE 2019 9200.patch | (download)

poppler/Stream.cc | 3 3 + 0 - 0 !
1 file changed, 3 insertions(+)

 [patch] imagestream::getline: fix crash on broken files

Fixes #728

CVE 2019 9631.patch | (download)

poppler/CairoRescaleBox.cc | 18 9 + 9 - 0 !
1 file changed, 9 insertions(+), 9 deletions(-)

 [patch] cairo: constrain number of cycles in rescale filter

Pass address of the first byte after end of the source buffer
to downsample_row_box_filter() so that we can check
that we don't run out of it.

Fixes issue #736

CVE 2019 10873.patch | (download)

splash/SplashXPathScanner.cc | 5 4 + 1 - 0 !
1 file changed, 4 insertions(+), 1 deletion(-)

 [patch] splashxpathscanner::clipaaline: fix crash on broken file

Make sure the index of allIntersections we access is valid

Fixes #748

bug924029 goostring null pointers.patch | (download)

goo/GooString.h | 12 6 + 6 - 0 !
qt5/tests/check_goostring.cpp | 37 37 + 0 - 0 !
2 files changed, 43 insertions(+), 6 deletions(-)

 make goostring constructible and assignable from null pointers again
 since some of the code expects it.
CVE 2019 10872.patch | (download)

splash/Splash.cc | 48 33 + 15 - 0 !
1 file changed, 33 insertions(+), 15 deletions(-)

 [patch] splash: restrict filling of overlapping boxes

Check whether area to fill in Splash::blitTransparent()
does not run out of allocated memory for source and for destination
and shrink it if needed.

Fixes #750

CVE 2019 12293.patch | (download)

poppler/JPEG2000Stream.cc | 8 7 + 1 - 0 !
1 file changed, 7 insertions(+), 1 deletion(-)

 [patch] jpeg2000stream: fail gracefully if not all components have
 the same WxH

I think this is just a mistake, or at least the only file we have with
this scenario is a fuzzed one

Silence deprecation warnings for PopplerAttachment c.patch | (download)

glib/poppler-attachment.h | 3 3 + 0 - 0 !
1 file changed, 3 insertions(+)

 silence deprecation warnings for popplerattachment->ctime,
 ->mtime

GTime is not Y2038-safe, and is now marked as deprecated. Don't trigger
deprecation warnings for projects that include poppler headers but
do not otherwise use GTime.

Part of #765.

Signed-off-by: Simon McVittie <smcv@debian.org>