Search for packages
Package details: pkg:alpm/archlinux/poppler@22.08.0-1
purl pkg:alpm/archlinux/poppler@22.08.0-1
Next non-vulnerable version 22.08.0-2
Latest non-vulnerable version 22.08.0-2
Risk 3.5
Vulnerabilities affecting this package (2)
Vulnerability Summary Fixed by
VCID-p7pw-zwhs-aaag
Aliases:
CVE-2022-38784
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
22.08.0-2
Affected by 0 other vulnerabilities.
VCID-y3fh-hvfu-aaac
Aliases:
CVE-2022-27337
CVE-2022-27337 poppler: A logic error in the Hints::Hints function can cause denial of service
22.08.0-2
Affected by 0 other vulnerabilities.
Vulnerabilities fixed by this package (0)
Vulnerability Summary Aliases
This package is not known to fix vulnerabilities.

Date Actor Action Vulnerability Source VulnerableCode Version
2024-09-28T20:47:40.034327+00:00 Arch Linux Importer Affected by VCID-y3fh-hvfu-aaac https://security.archlinux.org/AVG-2812 34.0.1
2024-09-28T20:47:40.011172+00:00 Arch Linux Importer Affected by VCID-p7pw-zwhs-aaag https://security.archlinux.org/AVG-2812 34.0.1
2024-01-03T22:25:24.733918+00:00 Arch Linux Importer Affected by VCID-y3fh-hvfu-aaac https://security.archlinux.org/AVG-2812 34.0.0rc1
2024-01-03T22:25:24.712646+00:00 Arch Linux Importer Affected by VCID-p7pw-zwhs-aaag https://security.archlinux.org/AVG-2812 34.0.0rc1