Описание
t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 5.1.2-3ubuntu3 |
| hardy | ignored | end of life |
| karmic | ignored | end of life |
| lucid | released | 5.1.2-3ubuntu0.10.04.1 |
| maverick | released | 5.1.2-3ubuntu0.10.10.1 |
| natty | released | 5.1.2-3ubuntu0.11.04.1 |
| oneiric | released | 5.1.2-3ubuntu0.11.10.1 |
| upstream | released | 5.1.2-3.3 |
Показывать по
EPSS
6.8 Medium
CVSS2
Связанные уязвимости
t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf.
t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf.
t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and ot ...
t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, uses an invalid pointer in conjunction with a dereference operation, which allows remote attackers to execute arbitrary code via a crafted Type 1 font in a PDF document, as demonstrated by testz.2184122398.pdf.
EPSS
6.8 Medium
CVSS2