[tex-live] Recent poppler vulnerabilities?
Alexander Cherepanov
cherepan at mccme.ru
Sat Oct 24 12:47:33 CEST 2009
Hi!
There was a bunch of vunerabilities patched recently in xpdf and
poppler. And I have just realized that it could be relevant for
texlive as it includes texworks linked with poppler.
Some links:
CVE-2009-3604
http://site.pi3.com.pl/adv/xpdf.txt
CVE-2009-3608
http://ocert.org/advisories/ocert-2009-016.html
Some more CVEs are listed in
http://lists.grok.org.uk/pipermail/full-disclosure/2009-October/071245.html
Fixed version is Poppler 0.12.1, released on Oct 18, 2009.
Alexander Cherepanov
More information about the tex-live
mailing list