Bugzilla – Bug 1214621
VUL-0: CVE-2022-37051: poppler: abort in main() in pdfunite.cc
Last modified: 2024-05-28 08:45:52 UTC
CVE-2022-37051 An issue was discovered in Poppler 22.07.0. There is a reachable abort which leads to denial of service because the main function in pdfunite.cc lacks a stream check before saving an embedded file. Reference: https://gitlab.freedesktop.org/poppler/poppler/-/issues/1276 https://gitlab.freedesktop.org/poppler/poppler/-/commit/4631115647c1e4f0482ffe0491c2f38d2231337b References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-37051 https://bugzilla.redhat.com/show_bug.cgi?id=2234528 https://www.cve.org/CVERecord?id=CVE-2022-37051 https://gitlab.freedesktop.org/poppler/poppler/-/commit/4631115647c1e4f0482ffe0491c2f38d2231337b https://gitlab.freedesktop.org/poppler/poppler/-/issues/1276
BEFORE 15sp4,15sp2,15,12sp2/poppler TW/poppler :/214621/uni $ pdftohtml poc -f 1 /dev/null [..] Syntax Error (4872): Dictionary key must be a name object Syntax Error (4873): Dictionary key must be a name object Syntax Error (4881): Dictionary key must be a name object Syntax Error: Couldn't find trailer dictionary Syntax Error: XRef's Catalog is not a dictionary. :/214621/uni $ [could not reproduce] :/214621/uni $ pdftohtml poc -f 1 /dev/null [..] Syntax Error (4873): Dictionary key must be a name object Syntax Error (4881): Dictionary key must be a name object Syntax Error: Couldn't find trailer dictionary Internal Error (0): Call to Object where the object was type 5, not the expected type 7 Aborted (core dumped) :/214621/uni $ 12/poppler :/214621/uni $ pdftohtml poc -f 1 /dev/null [..] Syntax Error (203011): Illegal character <2f> in hex string Syntax Error (203012): Illegal character <50> in hex string Syntax Error (203014): Illegal character <67> in hex string Syntax Error (203016): Illegal character <73> in hex string Syntax Error (203019): Illegal character '>' Syntax Error: Top-level pages object is wrong type (null) :/214621/uni $ [could not reproduce] PATCH see comment 0 TW/poppler has the patch already in 12/poppler: pageCatObj code not found AFTER 15sp4,15sp2,15,12sp2/poppler :/214621/uni $ pdftohtml poc -f 1 /dev/null [..] Syntax Error (4868): Dictionary key must be a name object Syntax Error (4872): Dictionary key must be a name object Syntax Error (4873): Dictionary key must be a name object Syntax Error (4881): Dictionary key must be a name object Syntax Error: Couldn't find trailer dictionary Syntax Error: XRef's Catalog is not a dictionary. :/214621/uni $ [fixed]
Submitted for: 15sp4,15sp2,15,12sp2/poppler. I believe all fixed.
15sp5/poppler: the fix already in upstream, fixed
SUSE-SU-2023:3947-1: An update that solves three vulnerabilities can now be installed. Category: security (moderate) Bug References: 1214618, 1214621, 1214622 CVE References: CVE-2022-37050, CVE-2022-37051, CVE-2022-38349 Sources used: openSUSE Leap 15.4 (src): poppler-qt6-22.01.0-150400.3.11.2, poppler-qt5-22.01.0-150400.3.11.2, poppler-22.01.0-150400.3.11.2 Basesystem Module 15-SP4 (src): poppler-22.01.0-150400.3.11.2 SUSE Package Hub 15 15-SP4 (src): poppler-qt5-22.01.0-150400.3.11.2, poppler-22.01.0-150400.3.11.2 SUSE Linux Enterprise Workstation Extension 15 SP5 (src): poppler-22.01.0-150400.3.11.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:3983-1: An update that solves five vulnerabilities can now be installed. Category: security (important) Bug References: 1214257, 1214618, 1214621, 1214622, 1215422 CVE References: CVE-2020-23804, CVE-2020-36024, CVE-2022-37050, CVE-2022-37051, CVE-2022-38349 Sources used: openSUSE Leap 15.4 (src): poppler-0.62.0-150000.4.25.2 SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1 (src): poppler-0.62.0-150000.4.25.2 SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1 (src): poppler-0.62.0-150000.4.25.2 SUSE Linux Enterprise Server for SAP Applications 15 SP1 (src): poppler-0.62.0-150000.4.25.2 SUSE CaaS Platform 4.0 (src): poppler-0.62.0-150000.4.25.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:3982-1: An update that solves five vulnerabilities can now be installed. Category: security (important) Bug References: 1214257, 1214618, 1214621, 1214622, 1215422 CVE References: CVE-2020-23804, CVE-2020-36024, CVE-2022-37050, CVE-2022-37051, CVE-2022-38349 Sources used: SUSE Linux Enterprise Software Development Kit 12 SP5 (src): poppler-qt-0.43.0-16.35.2, poppler-0.43.0-16.35.2 SUSE Linux Enterprise High Performance Computing 12 SP5 (src): poppler-qt-0.43.0-16.35.2, poppler-0.43.0-16.35.2 SUSE Linux Enterprise Server 12 SP5 (src): poppler-qt-0.43.0-16.35.2, poppler-0.43.0-16.35.2 SUSE Linux Enterprise Server for SAP Applications 12 SP5 (src): poppler-qt-0.43.0-16.35.2, poppler-0.43.0-16.35.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
SUSE-SU-2023:3998-1: An update that solves five vulnerabilities can now be installed. Category: security (important) Bug References: 1214257, 1214618, 1214621, 1214622, 1215422 CVE References: CVE-2020-23804, CVE-2020-36024, CVE-2022-37050, CVE-2022-37051, CVE-2022-38349 Sources used: SUSE Manager Server 4.2 (src): poppler-0.79.0-150200.3.21.2 SUSE Enterprise Storage 7.1 (src): poppler-0.79.0-150200.3.21.2 openSUSE Leap 15.4 (src): poppler-0.79.0-150200.3.21.2 Basesystem Module 15-SP4 (src): poppler-0.79.0-150200.3.21.2 Basesystem Module 15-SP5 (src): poppler-0.79.0-150200.3.21.2 SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2 (src): poppler-0.79.0-150200.3.21.2 SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (src): poppler-0.79.0-150200.3.21.2 SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (src): poppler-0.79.0-150200.3.21.2 SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2 (src): poppler-0.79.0-150200.3.21.2 SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (src): poppler-0.79.0-150200.3.21.2 SUSE Linux Enterprise Server for SAP Applications 15 SP2 (src): poppler-0.79.0-150200.3.21.2 SUSE Linux Enterprise Server for SAP Applications 15 SP3 (src): poppler-0.79.0-150200.3.21.2 SUSE Manager Proxy 4.2 (src): poppler-0.79.0-150200.3.21.2 SUSE Manager Retail Branch Server 4.2 (src): poppler-0.79.0-150200.3.21.2 NOTE: This line indicates an update has been released for the listed product(s). At times this might be only a partial fix. If you have questions please reach out to maintenance coordination.
done, closing