CVE-2017-2820 -- popplerID: oval:org.secpod.oval:def:2001401 | Date: (C)2019-06-02 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality of freedesktop.org Poppler 0.53.0. A specially crafted PDF file can lead to an integer overflow causing out of bounds memory overwrite on the heap resulting in potential arbitrary code execution. To trigger this vulnerability, a victim must open the malicious PDF in an application using this library.
Platform: |
Debian 8.x |
Debian 9.x |
Product: |
libpoppler-cpp-dev |