Описание
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing.
Затронутые пакеты
| Платформа | Пакет | Состояние | Рекомендация | Релиз |
|---|---|---|---|---|
| Red Hat Enterprise Linux 5 | poppler | Will not fix | ||
| Red Hat Enterprise Linux 6 | poppler | Will not fix | ||
| Red Hat Enterprise Linux 7 | evince | Fixed | RHSA-2019:2022 | 06.08.2019 |
| Red Hat Enterprise Linux 7 | okular | Fixed | RHSA-2019:2022 | 06.08.2019 |
| Red Hat Enterprise Linux 7 | poppler | Fixed | RHSA-2019:2022 | 06.08.2019 |
| Red Hat Enterprise Linux 8 | poppler | Fixed | RHSA-2019:2713 | 12.09.2019 |
Показывать по
Дополнительная информация
Статус:
EPSS
3.3 Low
CVSS3
Связанные уязвимости
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing.
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to cause a denial-of-service (application crash caused by Object.h SIGABRT, because of a wrong return value from PDFDoc::setup) by crafting a PDF file in which an xref data structure is mishandled during extractPDFSubtype processing.
In Poppler 0.72.0, PDFDoc::setup in PDFDoc.cc allows attackers to caus ...
EPSS
3.3 Low
CVSS3