MFC original commit naddy: Remove workaround for GNU m4 incompatibility, which has been fixed in our m4. Check sanity of the TrueType "loca" table. Apply a patch to fix a heap overflow poppler has the same fix, and xpdf upstream will release this fix in xpdf This update fixes the patch. Also, fix license marker, update plists and simplify the pkgname dropping the pl, which seems to confuse bsd. Finally, fix make install spotted by markus lude at gmx. 
| Uploader: | JoJorr |
| Date Added: | 3 October 2011 |
| File Size: | 25.39 Mb |
| Operating Systems: | Windows NT/2000/XP/2003/2003/7/8/10 MacOS 10/X |
| Downloads: | 99218 |
| Price: | Free* [*Free Regsitration Required] |
pdftotext - Islandora 7.x - DuraSpace Wiki
Version History View Complete History. This addresses the following security issues: Chris Evans discovered numerous vulnerabilities in the xpdf package: Workaround really stupid change with FreeType2 that comes with XF 4. Finally, fix make install spotted by markus lude at gmx. These can result in writing an arbitrary byte to an attacker controlled location which probably could lead to arbitrary code execution.
AIX Open Source Packages | Main / Xpdf
This site is operated by www. The pdftops filter in xpdf contains an integer overflow that can be exploited to gain the privileges of the target user. Check sanity of the TrueType "loca" table. CAN Chris also discovered issues with infinite loop logic error.
Update to xpdf 3. Both patches fix crashes seen with some PDF documents. Remove workaround for GNU m4 incompatibility, which has been fixed in our m4.
Fix denial of service vulnerability.
Fixes the detection of openmotif after the latest update. This package also provides pdfdetach 1a PDF document embedded file extractor. Tell configure to use voolabs. These can result in DoS or possibly arbitrary code execution.
Appropriate conflict marker foolavs upgrade flawless. Apply a patch to fix a heap overflow poppler has the same fix, and xpdf upstream will release this fix in xpdf Cope with recent fonts directory change in ghostscript. Specially crafted broken tables caused disk space exhaustion due to very large generated glyph descriptions when attempting to fix the table. Patch from upstream poppler git.
FreeType2 authors are brain dead.
Multiple integer overflow issues affecting xpdf. The OpenBSD voolabs mailing-list. The previous patch for the hyperlinks issue was not adequate. This update fixes the patch. Security fix for CVE MFC original commit naddy: Also, fix license marker, update plists and simplify the pkgname dropping the pl, which seems to confuse bsd. CAN Multiple integer overflow issues.
Fix several security bugs in the xpdf code. Fix possible out of bounds access in xpath code, reported upstream; bump package name.
Do you want to use VulDB in your project?
Also remove former maintainer at his request. Also apply a patch that kili lifted from poppler some time ago.
Prevent more out-of-bounds aray accesses by ignoring hints referencing point numbers out of the correct range; ok kiliriding on the update.
No comments:
Post a Comment