CVE-2017-9408

Опубликовано: 02 июн. 2017

Источник: debian

Описание

In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
poppler	fixed	0.57.0-2		package
poppler	not-affected		wheezy	package

Примечания

https://bugs.freedesktop.org/show_bug.cgi?id=100776
https://cgit.freedesktop.org/poppler/poppler/commit/?id=b21b041f7948680c03109f0c404400a9dbc4544c

Связанные уязвимости

CVE-2017-9408

CVSS3: 6.5

ubuntu

больше 8 лет назад

In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file.

CVE-2017-9408

CVSS3: 3.3

redhat

почти 9 лет назад

In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file.

CVE-2017-9408

CVSS3: 6.5

nvd

больше 8 лет назад

In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file.

GHSA-3f2q-h2mg-2c86

CVSS3: 6.5

github

больше 3 лет назад

In Poppler 0.54.0, a memory leak vulnerability was found in the function Object::initArray in Object.cc, which allows attackers to cause a denial of service via a crafted file.

SUSE-SU-2017:1998-1

suse-cvrf

больше 8 лет назад

Security update for poppler