Ubuntu Security Notices
USN-3905-1

USN-3905-1: poppler vulnerability

Publication date

11 March 2019

Overview

poppler could be made to crash if it opened a specially crafted file.

Releases

18.10 18.04 LTS 16.04 LTS 14.04 LTS

Packages

poppler - PDF rendering library

Details

It was discovered that poppler incorrectly handled certain PDF files.
An attacker could possibly use this issue to cause a denial of service.

It was discovered that poppler incorrectly handled certain PDF files.
An attacker could possibly use this issue to cause a denial of service.

Update instructions

In general, a standard system update will make all the necessary changes.

Learn more about how to get the fixes.

The problem can be corrected by updating your system to the following package versions:

Ubuntu Release	Package Version
18.10 cosmic	libpoppler79 – 0.68.0-0ubuntu1.6
18.10 cosmic	poppler-utils – 0.68.0-0ubuntu1.6
18.04 LTS bionic	libpoppler73 – 0.62.0-2ubuntu2.8
18.04 LTS bionic	poppler-utils – 0.62.0-2ubuntu2.8
16.04 LTS xenial	libpoppler58 – 0.41.0-0ubuntu1.13
16.04 LTS xenial	poppler-utils – 0.41.0-0ubuntu1.13
14.04 LTS trusty	libpoppler44 – 0.24.5-2ubuntu4.17
14.04 LTS trusty	poppler-utils – 0.24.5-2ubuntu4.17

Reduce your security exposure

Ubuntu Pro provides ten-year security coverage to 25,000+ packages in Main and Universe repositories, and it is free for up to five machines.

Get Ubuntu Pro

References

CVE-2019-9200

CVE-2019-9200

USN-4042-1

USN-4042-1

Have additional questions?

Talk to a member of the team ›