Описание
In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.
Ссылки
- Vendor Advisory
- ProductVendor Advisory
- Vendor Advisory
- ProductVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.04 (исключая)
cpe:2.3:a:glyphandcog:xpdfreader:*:*:*:*:*:*:*:*
EPSS
Процентиль: 33%
0.00133
Низкий
7.8 High
CVSS3
Дефекты
CWE-190
Связанные уязвимости
CVSS3: 7.8
ubuntu
больше 3 лет назад
In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.
CVSS3: 7.8
debian
больше 3 лет назад
In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing ...
CVSS3: 7.8
github
больше 3 лет назад
In Xpdf prior to 4.04, the DCT (JPEG) decoder was incorrectly allowing the 'interleaved' flag to be changed after the first scan of the image, leading to an unknown integer-related vulnerability in Stream.cc.
EPSS
Процентиль: 33%
0.00133
Низкий
7.8 High
CVSS3
Дефекты
CWE-190