Poppler: Multiple vulnerabilities Multiple vulnerabilities have been found in Poppler, the worst of which could allow the execution of arbitrary code. poppler 2018-01-17 2018-01-17 619558 620198 622430 624708 627390 remote 0.57.0-r1 0.57.0-r1

Poppler is a PDF rendering library based on the xpdf-3.0 code base.

Multiple vulnerabilities have been discovered in Poppler. Please review the CVE identifiers referenced below for details.

A remote attacker, by enticing a user to open a specially crafted PDF, could execute arbitrary code or cause a Denial of Service condition.

There is no known workaround at this time.

All Poppler users should upgrade to the latest version:

# emerge --sync # emerge --ask --oneshot --verbose ">=app-text/poppler-0.57.0-r1" CVE-2017-2820 CVE-2017-7511 CVE-2017-9083 CVE-2017-9406 CVE-2017-9408 CVE-2017-9865 chrisadr b-man