It was discovered that poppler did return program execution to the
libjpeg library under error conditions, which is not expected by the
library and results in application crash and possibly code execution.
For Debian 6 Squeeze, these issues have been fixed in poppler version 0.12.4-1.2+squeeze4
CPE | Name | Operator | Version |
---|---|---|---|
poppler | eq | 0.12.4-1.2 | |
poppler | eq | 0.12.4-1.2+squeeze1 | |
poppler | eq | 0.12.4-1.2+squeeze2 | |
poppler | eq | 0.12.4-1.2+squeeze3 |