{"schema_version":"1.7.2","id":"OESA-2025-2621","modified":"2025-11-07T12:30:17Z","published":"2025-11-07T12:30:17Z","upstream":["CVE-2020-36024"],"summary":"poppler security update","details":"Poppler is a free software utility library for rendering Portable Document Format (PDF) documents. \\ Its development is supported by freedesktop.org. It is commonly used on Linux systems,and is used by \\ the PDF viewers of the open source GNOME and KDE desktop environments.\r\n\r\nSecurity Fix(es):\n\nAn issue was discovered in freedesktop poppler version 20.12.1, allows remote attackers to cause a denial of service (DoS) via crafted .pdf file to FoFiType1C::convertToType1 function.(CVE-2020-36024)","affected":[{"package":{"ecosystem":"openEuler:22.03-LTS-SP3","name":"poppler","purl":"pkg:rpm/openEuler/poppler&distro=openEuler-22.03-LTS-SP3"},"ranges":[{"type":"ECOSYSTEM","events":[{"introduced":"0"},{"fixed":"0.90.0-17.oe2203sp3"}]}],"ecosystem_specific":{"aarch64":["poppler-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-cpp-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-cpp-devel-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-debuginfo-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-debugsource-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-devel-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-glib-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-glib-devel-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-qt5-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-qt5-devel-0.90.0-17.oe2203sp3.aarch64.rpm","poppler-utils-0.90.0-17.oe2203sp3.aarch64.rpm"],"noarch":["poppler-glib-doc-0.90.0-17.oe2203sp3.noarch.rpm","poppler-help-0.90.0-17.oe2203sp3.noarch.rpm"],"src":["poppler-0.90.0-17.oe2203sp3.src.rpm"],"x86_64":["poppler-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-cpp-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-cpp-devel-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-debuginfo-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-debugsource-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-devel-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-glib-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-glib-devel-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-qt5-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-qt5-devel-0.90.0-17.oe2203sp3.x86_64.rpm","poppler-utils-0.90.0-17.oe2203sp3.x86_64.rpm"]}}],"references":[{"type":"ADVISORY","url":"https://www.openeuler.org/zh/security/security-bulletins/detail/?id=openEuler-SA-2025-2621"},{"type":"ADVISORY","url":"https://nvd.nist.gov/vuln/detail/CVE-2020-36024"}],"database_specific":{"severity":"Medium"}}