Security update for qpdf
Announcement ID: | SUSE-SU-2018:3066-1 |
---|---|
Rating: | moderate |
References: | |
Cross-References: | |
CVSS scores: |
|
Affected Products: |
|
An update that solves eight vulnerabilities can now be installed.
Description:
This update for qpdf fixes the following issues:
qpdf was updated to 7.1.1.
Security issues fixed:
- CVE-2017-11627: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050577).
- CVE-2017-11625: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050579).
- CVE-2017-11626: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050578).
- CVE-2017-11624: A stack-consumption vulnerability which allows attackers to cause DoS (bsc#1050581).
- CVE-2017-12595: Stack overflow when processing deeply nested arrays and dictionaries (bsc#1055960).
- CVE-2017-9209: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040312).
- CVE-2017-9210: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040313).
-
CVE-2017-9208: Remote attackers can cause a denial of service (infinite recursion and stack consumption) via a crafted PDF document (bsc#1040311).
-
Check release notes for detailed bug fixes.
- http://qpdf.sourceforge.net/files/qpdf-manual.html#ref.release-notes
Patch Instructions:
To install this SUSE update use the SUSE recommended
installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
-
SUSE OpenStack Cloud 6
zypper in -t patch SUSE-OpenStack-Cloud-6-2018-2169=1
-
SUSE OpenStack Cloud 7
zypper in -t patch SUSE-OpenStack-Cloud-7-2018-2169=1
-
SUSE Linux Enterprise Desktop 12 SP3
zypper in -t patch SUSE-SLE-DESKTOP-12-SP3-2018-2169=1
-
SUSE Linux Enterprise Point of Service Image Server 12 12-SP2
zypper in -t patch SUSE-SLE-POS-12-SP2-CLIENT-2018-2169=1
-
SUSE Linux Enterprise Server for SAP Applications 12 SP1
zypper in -t patch SUSE-SLE-SAP-12-SP1-2018-2169=1
-
SUSE Linux Enterprise Server for SAP Applications 12 SP2
zypper in -t patch SUSE-SLE-SAP-12-SP2-2018-2169=1
-
SUSE Linux Enterprise Software Development Kit 12 SP3
zypper in -t patch SUSE-SLE-SDK-12-SP3-2018-2169=1
-
SUSE Linux Enterprise Server 12 LTSS 12
zypper in -t patch SUSE-SLE-SERVER-12-2018-2169=1
-
SUSE Linux Enterprise Server 12 SP1 LTSS 12-SP1
zypper in -t patch SUSE-SLE-SERVER-12-SP1-2018-2169=1
-
SUSE Linux Enterprise Server 12 SP2 LTSS 12-SP2
zypper in -t patch SUSE-SLE-SERVER-12-SP2-2018-2169=1
-
SUSE Linux Enterprise Server 12 SP3
zypper in -t patch SUSE-SLE-SERVER-12-SP3-2018-2169=1
-
SUSE Linux Enterprise High Performance Computing 12 SP3
zypper in -t patch SUSE-SLE-SERVER-12-SP3-2018-2169=1
-
SUSE Linux Enterprise Server for SAP Applications 12 SP3
zypper in -t patch SUSE-SLE-SERVER-12-SP3-2018-2169=1
-
SUSE Enterprise Storage 4
zypper in -t patch SUSE-Storage-4-2018-2169=1
Package List:
-
SUSE OpenStack Cloud 6 (x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
-
SUSE OpenStack Cloud 7 (x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
-
SUSE Linux Enterprise Desktop 12 SP3 (x86_64)
- cups-filters-1.0.58-19.2.3
- qpdf-debuginfo-7.1.1-3.3.4
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-debuginfo-1.0.58-19.2.3
- cups-filters-cups-browsed-debuginfo-1.0.58-19.2.3
- cups-filters-ghostscript-debuginfo-1.0.58-19.2.3
- cups-filters-debugsource-1.0.58-19.2.3
- cups-filters-foomatic-rip-debuginfo-1.0.58-19.2.3
- cups-filters-cups-browsed-1.0.58-19.2.3
- libqpdf18-debuginfo-7.1.1-3.3.4
- libqpdf18-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-19.2.3
- cups-filters-ghostscript-1.0.58-19.2.3
-
SUSE Linux Enterprise Point of Service Image Server 12 12-SP2 (x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
-
SUSE Linux Enterprise Server for SAP Applications 12 SP1 (ppc64le x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
-
SUSE Linux Enterprise Server for SAP Applications 12 SP2 (ppc64le x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
-
SUSE Linux Enterprise Software Development Kit 12 SP3 (aarch64 ppc64le s390x x86_64)
- qpdf-devel-7.1.1-3.3.4
- qpdf-debuginfo-7.1.1-3.3.4
- qpdf-debugsource-7.1.1-3.3.4
-
SUSE Linux Enterprise Server 12 LTSS 12 (ppc64le s390x x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
-
SUSE Linux Enterprise Server 12 SP1 LTSS 12-SP1 (ppc64le s390x x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
-
SUSE Linux Enterprise Server 12 SP2 LTSS 12-SP2 (ppc64le s390x x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
-
SUSE Linux Enterprise Server 12 SP3 (aarch64 ppc64le s390x x86_64)
- cups-filters-1.0.58-19.2.3
- qpdf-debuginfo-7.1.1-3.3.4
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-debuginfo-1.0.58-19.2.3
- cups-filters-cups-browsed-debuginfo-1.0.58-19.2.3
- cups-filters-ghostscript-debuginfo-1.0.58-19.2.3
- cups-filters-debugsource-1.0.58-19.2.3
- cups-filters-foomatic-rip-debuginfo-1.0.58-19.2.3
- cups-filters-cups-browsed-1.0.58-19.2.3
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
- libqpdf18-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-19.2.3
- cups-filters-ghostscript-1.0.58-19.2.3
-
SUSE Linux Enterprise High Performance Computing 12 SP3 (aarch64 x86_64)
- cups-filters-1.0.58-19.2.3
- qpdf-debuginfo-7.1.1-3.3.4
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-debuginfo-1.0.58-19.2.3
- cups-filters-cups-browsed-debuginfo-1.0.58-19.2.3
- cups-filters-ghostscript-debuginfo-1.0.58-19.2.3
- cups-filters-debugsource-1.0.58-19.2.3
- cups-filters-foomatic-rip-debuginfo-1.0.58-19.2.3
- cups-filters-cups-browsed-1.0.58-19.2.3
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
- libqpdf18-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-19.2.3
- cups-filters-ghostscript-1.0.58-19.2.3
-
SUSE Linux Enterprise Server for SAP Applications 12 SP3 (ppc64le x86_64)
- cups-filters-1.0.58-19.2.3
- qpdf-debuginfo-7.1.1-3.3.4
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-debuginfo-1.0.58-19.2.3
- cups-filters-cups-browsed-debuginfo-1.0.58-19.2.3
- cups-filters-ghostscript-debuginfo-1.0.58-19.2.3
- cups-filters-debugsource-1.0.58-19.2.3
- cups-filters-foomatic-rip-debuginfo-1.0.58-19.2.3
- cups-filters-cups-browsed-1.0.58-19.2.3
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
- libqpdf18-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-19.2.3
- cups-filters-ghostscript-1.0.58-19.2.3
-
SUSE Enterprise Storage 4 (x86_64)
- cups-filters-cups-browsed-1.0.58-15.2.1
- cups-filters-debuginfo-1.0.58-15.2.1
- cups-filters-1.0.58-15.2.1
- qpdf-debuginfo-7.1.1-3.3.4
- cups-filters-debugsource-1.0.58-15.2.1
- cups-filters-foomatic-rip-debuginfo-1.0.58-15.2.1
- qpdf-debugsource-7.1.1-3.3.4
- cups-filters-foomatic-rip-1.0.58-15.2.1
- cups-filters-cups-browsed-debuginfo-1.0.58-15.2.1
- cups-filters-ghostscript-1.0.58-15.2.1
- cups-filters-ghostscript-debuginfo-1.0.58-15.2.1
- libqpdf18-7.1.1-3.3.4
- libqpdf18-debuginfo-7.1.1-3.3.4
- qpdf-7.1.1-3.3.4
References:
- https://www.suse.com/security/cve/CVE-2017-11624.html
- https://www.suse.com/security/cve/CVE-2017-11625.html
- https://www.suse.com/security/cve/CVE-2017-11626.html
- https://www.suse.com/security/cve/CVE-2017-11627.html
- https://www.suse.com/security/cve/CVE-2017-12595.html
- https://www.suse.com/security/cve/CVE-2017-9208.html
- https://www.suse.com/security/cve/CVE-2017-9209.html
- https://www.suse.com/security/cve/CVE-2017-9210.html
- https://bugzilla.suse.com/show_bug.cgi?id=1040311
- https://bugzilla.suse.com/show_bug.cgi?id=1040312
- https://bugzilla.suse.com/show_bug.cgi?id=1040313
- https://bugzilla.suse.com/show_bug.cgi?id=1050577
- https://bugzilla.suse.com/show_bug.cgi?id=1050578
- https://bugzilla.suse.com/show_bug.cgi?id=1050579
- https://bugzilla.suse.com/show_bug.cgi?id=1050581
- https://bugzilla.suse.com/show_bug.cgi?id=1055960