Thursday, October 29, 2009

Security Updates: Poppler + xpdf

Two security updates were released on Slackware-Current today. They are poppler and xpdf. Along with this two updates, several packages gets recompiled and updated as well.

Here is the latest -Current changelog:
Wed Oct 28 22:50:35 UTC 2009
kde/kdegraphics-4.3.2-i486-2.txz: Rebuilt.
Recompiled against new libpoppler.

kde/koffice-2.0.83-i486-2.txz: Rebuilt.
Recompiled against new libpoppler.

l/babl-0.1.0-i486-1.txz: Upgraded.

l/gegl-0.1.0-i486-1.txz: Upgraded.

l/poppler-0.12.1-i486-1.txz: Upgraded.
Security fixes based on xpdf 3.02pl4 were integrated.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3603
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3604
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3605
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3606
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3608
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3609
(* Security fix *)

l/poppler-data-0.3.0-noarch-1.txz: Upgraded.

xap/gimp-2.6.7-i486-1.txz: Upgraded.

xap/xpdf-3.02pl4-i486-1.txz: Upgraded.
This update fixes several security issues that could lead to an application crash, or execution of arbitrary code.
For more information, see:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3603
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3604
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3605
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3606
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3608
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3609
(* Security fix *)