Synopsis:          Low: evince and poppler security and bug fix update
Advisory ID:       SLSA-2020:3977-1
Issue Date:        2020-10-01
CVE Numbers:       CVE-2019-14494
--

Security Fix(es):

* poppler: divide-by-zero in function SplashOutputDev::tilingPatternFill in
SplashOutputDev.cc (CVE-2019-14494)
--

SL7
  x86_64
    poppler-utils-0.26.5-43.el7.x86_64.rpm
    evince-dvi-3.28.2-10.el7.x86_64.rpm
    poppler-0.26.5-43.el7.x86_64.rpm
    evince-libs-3.28.2-10.el7.i686.rpm
    evince-nautilus-3.28.2-10.el7.x86_64.rpm
    poppler-qt-0.26.5-43.el7.x86_64.rpm
    poppler-glib-0.26.5-43.el7.x86_64.rpm
    poppler-glib-0.26.5-43.el7.i686.rpm
    poppler-0.26.5-43.el7.i686.rpm
    evince-3.28.2-10.el7.x86_64.rpm
    evince-libs-3.28.2-10.el7.x86_64.rpm
    poppler-qt-0.26.5-43.el7.i686.rpm
    evince-debuginfo-3.28.2-10.el7.i686.rpm
    evince-debuginfo-3.28.2-10.el7.x86_64.rpm
    poppler-debuginfo-0.26.5-43.el7.i686.rpm
    poppler-debuginfo-0.26.5-43.el7.x86_64.rpm
    evince-browser-plugin-3.28.2-10.el7.x86_64.rpm
    evince-devel-3.28.2-10.el7.i686.rpm
    evince-devel-3.28.2-10.el7.x86_64.rpm
    poppler-cpp-0.26.5-43.el7.i686.rpm
    poppler-cpp-0.26.5-43.el7.x86_64.rpm
    poppler-cpp-devel-0.26.5-43.el7.i686.rpm
    poppler-cpp-devel-0.26.5-43.el7.x86_64.rpm
    poppler-demos-0.26.5-43.el7.x86_64.rpm
    poppler-devel-0.26.5-43.el7.i686.rpm
    poppler-devel-0.26.5-43.el7.x86_64.rpm
    poppler-glib-devel-0.26.5-43.el7.i686.rpm
    poppler-glib-devel-0.26.5-43.el7.x86_64.rpm
    poppler-qt-devel-0.26.5-43.el7.i686.rpm
    poppler-qt-devel-0.26.5-43.el7.x86_64.rpm

- Scientific Linux Development Team