← voltar
CVE-2017-9865

CVE-2017-9865

EPSS 1.7%
The function GfxImageColorMap::getGray in GfxState.cc in Poppler 0.54.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted PDF document, related to missing color-map validation in ImageOutputDev.cc.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://bugs.freedesktop.org/show_bug.cgi?id=100774http://somevulnsofadlab.blogspot.com/2017/06/popplerstack-buffer-overflow-in.htmlhttps://security.gentoo.org/glsa/201801-17https://usn.ubuntu.com/4042-1/https://www.debian.org/security/2018/dsa-4079