CVE-2019-14294

CVE-2019-14294

EPSS 1.0%

An issue was discovered in Xpdf 4.01.01. There is a use-after-free in the function JPXStream::fillReadBuf at JPXStream.cc, due to an out of bounds read.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://forum.xpdfreader.com/viewtopic.php?f=3&t=41851 https://github.com/TeamSeri0us/pocs/tree/master/xpdf/4.01.01