[okular] [Bug 388741] pdflatex-generated doc renders blank if "fontenc" package is used

bugzilla_noreply at kde.org bugzilla_noreply at kde.org
Wed Jan 10 11:23:48 UTC 2018 

https://bugs.kde.org/show_bug.cgi?id=388741

--- Comment #6 from kdebugs.grokchem at recursor.net ---
For the record, this is what was fixed in the poppler update that broke
rendering. The update was apparently justified imo.

  * Fix CVE-2017-9406: a memory leak vulnerability was found in the function
    gmalloc in gmem.cc, which allows attackers to cause a denial of service
    via a crafted file.
  * Fix CVE-2017-9408: memory leak in the function Object::initArray in
    Object.cc that allows attackers to cause a DoS via a crafted file.
  * Fix CVE-2017-9775: Stack buffer overflow in GfxState.cc in pdftocairo that
    allows remote attackers to cause a denial of service (application crash)
    via a crafted PDF document.
  * Fix CVE-2017-9776: Integer overflow leading to Heap buffer overflow in
    JBIG2Stream.cc in pdftocairo allows remote attackers to cause a denial of
    service (application crash) or possibly have unspecified other impact via a
    crafted PDF document.
  * Fix CVE-2017-9865: The function GfxImageColorMap::getGray in GfxState.cc
    allows remote attackers to cause a denial of service (stack-based buffer
    over-read and application crash) via a crafted PDF document
  * Fix CVE-2017-14517: NULL pointer dereference vulnerability in the
    XRef::parseEntry() function in XRef.cc
  * Fix CVE-2017-14518: Floating point exception in the
    isImageInterpolationRequired() function in Splash.cc
  * Fix CVE-2017-14519: A memory corruption may occur in a call to
    Object::streamGetChar
  * Fix CVE-2017-14520: Floating point exception in Splash::scaleImageYuXd()
  * Fix CVE-2017-14617: Floating point exception in the ImageStream class in
    Stream.cc
  * Fix CVE-2017-14975: NULL pointer dereference vulnerability in the
    FoFiType1C::convertToType0 function in FoFiType1C.cc
  * Fix CVE-2017-14976: Heap-based buffer over-read vulnerability in the
    FoFiType1C::convertToType0 function in FoFiType1C.cc
  * Fix CVE-2017-14977: NULL pointer dereference vulnerability in the
    FoFiTrueType::getCFFBlock function in FoFiTrueType.cc
  * Fix CVE-2017-15565: NULL Pointer Dereference in the
    GfxImageColorMap::getGrayLine() function in GfxState.cc

-- 
You are receiving this mail because:
You are the assignee for the bug.

More information about the Okular-devel mailing list