Bug#1103597: unblock: poppler/25.03.0-4
Jeremy Bícha
jeremy.bicha at canonical.com
Sat Apr 19 13:23:45 BST 2025
Package: release.debian.org
Control: affects -1 + src:poppler
X-Debbugs-Cc: poppler at packages.debian.org
User: release.debian.org at packages.debian.org
Usertags: unblock
Please allow poppler 25.03.0-4 to migrate faster than 10 days.
[ Reason ]
The only change is the inclusion of a security fix (which Debian
Security has marked no-dsa but would still like to have fixed).
https://security-tracker.debian.org/tracker/CVE-2025-43903
[ Impact ]
Minor security fix
[ Tests ]
Poppler does not have a test specifically for this security fix. We
currently ignore build test failures for poppler because they depend
on files that are not included in the source tarball. Poppler does
have basic autopkgtests to ensure that things can build against the
different library versions (glib, qt6, etc.) and load a PDF.
[ Risks ]
Poppler is an important widely used library but this is only a minimal
change to the signature verification code.
[ Checklist ]
[X] all changes are documented in the d/changelog
[X] I reviewed all changes and I approve them
[N/A] attach debdiff against the package in testing
Thank you,
Jeremy Bícha
More information about the Pkg-freedesktop-maintainers
mailing list