Information on source package okular

Available versions

ReleaseVersion
bullseye4:20.12.3-2
bookworm4:22.12.3-1
bookworm (security)4:22.12.3-1+deb12u1
trixie4:25.04.2-1
trixie (security)4:25.04.2-1+deb13u1
forky4:26.04.2-1
sid4:26.04.2-1

Open issues

BugbullseyebookwormtrixieforkysidDescription
TEMP-1139009-9CE18Evulnerable (no DSA, postponed)fixedfixedfixedfixedinteger overflow in fax image allocation leads to undersized heap allocation
TEMP-1139008-F7B58Fvulnerable (no DSA, postponed)fixedfixedfixedfixedunsigned integer wrap-around in fax backend leads to heap out-of-bounds read and write
TEMP-1139007-21322Avulnerable (no DSA, postponed)fixedfixedfixedfixedheap out-of-bounds read in fax backend Ghostscript header handling
TEMP-1139005-4885B2vulnerable (no DSA, postponed)fixedfixedfixedfixedheap out-of-bounds read in fax backend FAXMAGIC comparison
TEMP-1139004-33118Bvulnerable (no DSA, postponed)fixedfixedfixedfixedheap out-of-bounds write in fax backend on zero-length input

Resolved issues

BugDescription
CVE-2020-9359KDE Okular before 1.10.0 allows code execution via an action link in a ...
CVE-2018-1000801okular version 18.08 and earlier contains a Directory Traversal vulner ...
CVE-2010-2575Heap-based buffer overflow in the RLE decompression functionality in t ...

Security announcements

DSA / DLADescription
DSA-6332-1okular - security update
DLA-2856-1okular - security update
DLA-2159-1okular - security update
DSA-4303-1okular - security update
DLA-1516-1okular - security update
Search for package or bug name: Reporting problems