CESA-2017:2551 -- centos 7 popplerID: oval:org.secpod.oval:def:204588 | Date: (C)2018-04-30 (M)2022-10-10 |
Class: PATCH | Family: unix |
Poppler is a Portable Document Format rendering library, used by applications such as Evince. Security Fix: * A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened. * An integer overflow leading to heap-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened