[Forgot Password]
Login  Register Subscribe

24003

 
 

131425

 
 

104705

 
 

909

 
 

84119

 
 

133

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS-2017-902 ---- poppler

ID: oval:org.secpod.oval:def:1600782Date: (C)2017-10-04   (M)2018-01-10
Class: PATCHFamily: unix




Stack-buffer overflow in GfxState.cc:A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened. Integer overflow in JBIG2Stream.cc:An integer overflow leading to heap-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened

Platform:
Amazon Linux AMI
Product:
poppler
Reference:
ALAS-2017-902
CVE-2017-9775
CVE-2017-9776
CVE    2
CVE-2017-9775
CVE-2017-9776
CPE    3
cpe:/a:freedesktop:poppler:0.55.0
cpe:/a:freedesktop:poppler
cpe:/o:amazon:linux

© 2013 SecPod Technologies