CVE-2017-14520

Опубликовано: 17 сент. 2017

Источник: debian

Описание

In Poppler 0.59.0, a floating point exception occurs in Splash::scaleImageYuXd() in Splash.cc, which may lead to a potential attack when handling malicious PDF files.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
poppler	fixed	0.61.1-2		package
poppler	not-affected		wheezy	package

Примечания

https://bugs.freedesktop.org/show_bug.cgi?id=102719
https://cgit.freedesktop.org/poppler/poppler/commit/?id=504b3590182175390f474657a372e78fb1508262

Связанные уязвимости

CVE-2017-14520

CVSS3: 7.8

ubuntu

больше 8 лет назад

In Poppler 0.59.0, a floating point exception occurs in Splash::scaleImageYuXd() in Splash.cc, which may lead to a potential attack when handling malicious PDF files.

CVE-2017-14520

CVSS3: 3.3

redhat

больше 8 лет назад

In Poppler 0.59.0, a floating point exception occurs in Splash::scaleImageYuXd() in Splash.cc, which may lead to a potential attack when handling malicious PDF files.

CVE-2017-14520

CVSS3: 7.8

nvd

больше 8 лет назад

In Poppler 0.59.0, a floating point exception occurs in Splash::scaleImageYuXd() in Splash.cc, which may lead to a potential attack when handling malicious PDF files.

GHSA-qhcp-r283-5m8c

CVSS3: 7.8

github

больше 3 лет назад

In Poppler 0.59.0, a floating point exception occurs in Splash::scaleImageYuXd() in Splash.cc, which may lead to a potential attack when handling malicious PDF files.

SUSE-SU-2017:2952-1

suse-cvrf

около 8 лет назад

Security update for poppler