Описание
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2018-16646
- https://access.redhat.com/errata/RHSA-2019:2022
- https://bugzilla.redhat.com/show_bug.cgi?id=1622951
- https://lists.debian.org/debian-lts-announce/2018/10/msg00024.html
- https://lists.debian.org/debian-lts-announce/2018/11/msg00040.html
- https://lists.debian.org/debian-lts-announce/2018/12/msg00004.html
- https://lists.debian.org/debian-lts-announce/2020/07/msg00018.html
- https://usn.ubuntu.com/3837-1
- https://usn.ubuntu.com/3837-2
Связанные уязвимости
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may caus ...
Уязвимость функции Parser::getObj() библиотеки для рендеринга PDF-файлов Poppler, позволяющая нарушителю вызвать отказ в обслуживании