Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2024-4976

Опубликовано: 15 мая 2024
Источник: redhat
CVSS3: 8.4

Описание

Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference.

A flaw was found in Xpdf. An out-of-bounds array write in versions 4.05 and earlier occurs due to a missing object type check in the AcroForm field reference.

Меры по смягчению последствий

Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 10xpdfWill not fix

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important
Дефект:
CWE-787
https://bugzilla.redhat.com/show_bug.cgi?id=2280759xpdf: Out-of-bounds array write due to missing object type check

8.4 High

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2024-4976

CVSS3: 5.5
ubuntu
больше 1 года назад

Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference.

nvd логотип

CVE-2024-4976

CVSS3: 5.5
nvd
больше 1 года назад

Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference.

github логотип

GHSA-qvmh-c8p3-rp3h

CVSS3: 5.5
github
больше 1 года назад

Out-of-bounds array write in Xpdf 4.05 and earlier, due to missing object type check in AcroForm field reference.

8.4 High

CVSS3