[Forgot Password]
Login  Register Subscribe

23631

 
 

115038

 
 

96174

 
 

909

 
 

78077

 
 

109

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS-2017-902 ---- poppler

ID: oval:org.secpod.oval:def:1600782Date: (C)2017-10-04   (M)2017-10-04
Class: PATCHFamily: unix




Stack-buffer overflow in GfxState.cc:A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened. Integer overflow in JBIG2Stream.cc:An integer overflow leading to heap-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened

Platform:
Amazon Linux AMI
Product:
poppler
Reference:
ALAS-2017-902
CVE-2017-9775
CVE-2017-9776
CVE    2
CVE-2017-9775
CVE-2017-9776
CPE    2
cpe:/a:freedesktop:poppler
cpe:/o:amazon:linux

© 2013 SecPod Technologies