USN-850-3: poppler vulnerabilities

Ubuntu Security Notice USN-850-3

2nd November, 2009

poppler vulnerabilities

A security issue affects these releases of Ubuntu and its derivatives:

  • Ubuntu 9.10

Software description

  • poppler


USN-850-1 fixed vulnerabilities in poppler. This update provides the
corresponding updates for Ubuntu 9.10.

Original advisory details:

It was discovered that poppler contained multiple security issues when
parsing malformed PDF documents. If a user or automated system were tricked
into opening a crafted PDF file, an attacker could cause a denial of
service or execute arbitrary code with privileges of the user invoking the

Update instructions

The problem can be corrected by updating your system to the following package version:

Ubuntu 9.10:
libpoppler-glib4 0.12.0-0ubuntu2.1
libpoppler5 0.12.0-0ubuntu2.1

To update your system, please follow these instructions:

In general, a standard system upgrade is sufficient to effect the
necessary changes.


CVE-2009-3603, CVE-2009-3604, CVE-2009-3607, CVE-2009-3608, CVE-2009-3609