CVE-2018-7173

Опубликовано: 15 фев. 2018

Источник: debian

Описание

A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
xpdf	unfixed			package

Примечания

https://forum.xpdfreader.com/viewtopic.php?f=3&t=607
src:xpdf switched to use system poppler libary in 3.02-3

Связанные уязвимости

CVE-2018-7173

CVSS3: 5.5

ubuntu

почти 8 лет назад

A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.

CVE-2018-7173

CVSS3: 5.5

nvd

почти 8 лет назад

A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.

GHSA-2j3c-jv49-w6c7

CVSS3: 5.5

github

больше 3 лет назад

A large loop in JBIG2Stream::readSymbolDictSeg in xpdf 4.00 allows an attacker to cause denial of service via a specific file due to inappropriate decoding.