Overview

File _patchinfo of Package patchinfo.38047

<patchinfo incident="38047">
  <issue tracker="bnc" id="1239939">poppler is built without PIE</issue>
  <issue tracker="cve" id="2025-32365"/>
  <issue tracker="cve" id="2025-32364"/>
  <issue tracker="bnc" id="1240880">VUL-0: CVE-2025-32364: poppler,poppler-qt: poppler: Floating-Point Exception</issue>
  <issue tracker="bnc" id="1240881">VUL-0: CVE-2025-32365: poppler: misplaced isOk check in JBIG2Bitmap::combine function in JBIG2Stream.cc</issue>
  <packager>pgajdos</packager>
  <rating>moderate</rating>
  <category>security</category>
  <summary>Security update for poppler</summary>
  <description>This update for poppler fixes the following issues:

- CVE-2025-32364: Fixed a floating point exception. (bsc#1240880)
- CVE-2025-32365: Fixed the isOk check in JBIG2Bitmap::combine function in JBIG2Stream.cc. (bsc#1240881)
- Adding -fpie compile flag to GCC for Position Independent Executable (PIE) support (bsc#1239939).
</description>
</patchinfo>
openSUSE Build Service is sponsored by
Places