========================================================================== Ubuntu Security Notice USN-4646-2 November 26, 2020 poppler regression ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: - Ubuntu 18.04 LTS - Ubuntu 16.04 LTS Summary: USN-4646-1 introduced a regression in poppler. Software Description: - poppler: PDF rendering library Details: USN-4646-1 fixed vulnerabilities in poppler. The fix for CVE-2019-10871 introduced a regression causing certain applications linked against poppler to fail. This update backs out the fix pending further investigation. We apologize for the inconvenience. Original advisory details: It was discovered that Poppler incorrectly handled certain files. If a user or automated system were tricked into opening a crafted PDF file, an attacker could cause a denial of service. Update instructions: The problem can be corrected by updating your system to the following package versions: Ubuntu 18.04 LTS: libpoppler73 0.62.0-2ubuntu2.12 poppler-utils 0.62.0-2ubuntu2.12 Ubuntu 16.04 LTS: libpoppler58 0.41.0-0ubuntu1.16 poppler-utils 0.41.0-0ubuntu1.16 In general, a standard system update will make all the necessary changes. References: https://usn.ubuntu.com/4646-2 https://usn.ubuntu.com/4646-1 https://launchpad.net/bugs/1905741 Package Information: https://launchpad.net/ubuntu/+source/poppler/0.62.0-2ubuntu2.12 https://launchpad.net/ubuntu/+source/poppler/0.41.0-0ubuntu1.16