Описание
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 25.03.0-3 |
| esm-infra/bionic | released | 0.62.0-2ubuntu2.14+esm5 |
| esm-infra/focal | released | 0.86.1-0ubuntu1.6 |
| esm-infra/xenial | released | 0.41.0-0ubuntu1.16+esm6 |
| focal | released | 0.86.1-0ubuntu1.6 |
| jammy | released | 22.02.0-2ubuntu0.7 |
| noble | released | 24.02.0-1ubuntu9.3 |
| oracular | released | 24.08.0-1ubuntu0.2 |
| plucky | released | 25.03.0-3 |
| upstream | released | 25.04.0 |
Показывать по
EPSS
4 Medium
CVSS3
Связанные уязвимости
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
Poppler before 25.04.0 allows crafted input files to trigger out-of-bo ...
Poppler before 25.04.0 allows crafted input files to trigger out-of-bounds reads in the JBIG2Bitmap::combine function in JBIG2Stream.cc because of a misplaced isOk check.
Уязвимость библиотеки для отображения PDF-файлов Poppler, связанная с чтением за границами буфера памяти в функции JBIG2Bitmap::combine(), позволяющая нарушителю вызвать отказ в обслуживании
EPSS
4 Medium
CVSS3