ALAS-2017-902 ---- poppler| ID: oval:org.secpod.oval:def:1600782 | Date: (C)2017-10-04 (M)2023-12-20 |
| Class: PATCH | Family: unix |
Stack-buffer overflow in GfxState.cc:A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened. Integer overflow in JBIG2Stream.cc:An integer overflow leading to heap-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened
| Platform: |
| Amazon Linux AMI |
