-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2022-f7b375eae8 2022-09-22 01:16:31.284392 --------------------------------------------------------------------------------
Name : mingw-poppler Product : Fedora 36 Version : 22.01.0 Release : 7.fc36 URL : http://poppler.freedesktop.org/ Summary : MinGW Windows Poppler library Description : MinGW Windows Poppler library.
-------------------------------------------------------------------------------- Update Information:
Backport fix for CVE-2022-38784. -------------------------------------------------------------------------------- ChangeLog:
* Tue Sep 13 2022 Sandro Mani manisandro@gmail.com - 22.01.0-7 - Backport fix for CVE-2021-30860 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #2124532 - CVE-2022-38784 mingw-poppler: poppler: integer overflow in JBIG2 decoder using malformed files [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=2124532 --------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade --advisory FEDORA-2022-f7b375eae8' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------