Описание
An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_kids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write.
Ссылки
- Patch
- Patch
- Mailing ListThird Party Advisory
- Patch
- Patch
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 0.18 (исключая)
cpe:2.3:a:pdfresurrect_project:pdfresurrect:*:*:*:*:*:*:*:*
Конфигурация 2
Одно из
cpe:2.3:o:fedoraproject:fedora:29:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:30:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
Конфигурация 3
cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*
EPSS
Процентиль: 66%
0.00513
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-787
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 6 лет назад
An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_kids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write.
CVSS3: 7.8
debian
больше 6 лет назад
An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_ki ...
CVSS3: 7.8
github
больше 3 лет назад
An issue was discovered in PDFResurrect before 0.18. pdf_load_pages_kids in pdf.c doesn't validate a certain size value, which leads to a malloc failure and out-of-bounds write.
EPSS
Процентиль: 66%
0.00513
Низкий
7.8 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-787