An issue was discovered in Poppler through 0.78.0. There is a divide-by-zero error in the function SplashOutputDev::tilingPatternFill at SplashOutputDev.cc. Reference: https://gitlab.freedesktop.org/poppler/poppler/issues/802 https://gitlab.freedesktop.org/poppler/poppler/merge_requests/317
Created poppler tracking bugs for this issue: Affects: fedora-all [bug 1797456]
Upstream fix: https://gitlab.freedesktop.org/poppler/poppler/commit/b224e2f5739fe61de9fa69955d016725b2a4b78d
Function tilingPatternFill() was defined in SplashOutputDev.cc in Poppler upstream version 0.17.0 with commit https://gitlab.freedesktop.org/poppler/poppler/commit/abf167af. Red Hat Enterprise Linux 5 and 6 ship older versions of Poppler (0.5.4 and 0.12.4 respectively) that do not include the vulnerable function and, consequently, are not affected by this flaw.
Statement: This flaw did not affect the versions of Poppler as shipped with Red Hat Enterprise Linux 5 and 6, as they did not include the vulnerable code.
This issue has been addressed in the following products: Red Hat Enterprise Linux 7 Via RHSA-2020:3977 https://access.redhat.com/errata/RHSA-2020:3977
This bug is now closed. Further updates for individual products will be reflected on the CVE page(s): https://access.redhat.com/security/cve/cve-2019-14494
This issue has been addressed in the following products: Red Hat Enterprise Linux 8 Via RHSA-2020:4643 https://access.redhat.com/errata/RHSA-2020:4643