[Forgot Password]
Login  Register Subscribe

24128

 
 

131615

 
 

111818

 
 

909

 
 

87315

 
 

136

Paid content will be excluded from the download.


Download | Alert*
OVAL

ALAS-2017-902 ---- poppler

ID: oval:org.secpod.oval:def:1600782Date: (C)2017-10-04   (M)2018-05-10
Class: PATCHFamily: unix




Stack-buffer overflow in GfxState.cc:A stack-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened. Integer overflow in JBIG2Stream.cc:An integer overflow leading to heap-based buffer overflow was found in the poppler library. An attacker could create a malicious PDF file that would cause applications that use poppler to crash, or potentially execute arbitrary code when opened

Platform:
Amazon Linux AMI
Product:
poppler
Reference:
ALAS-2017-902
CVE-2017-9775
CVE-2017-9776
CVE    2
CVE-2017-9775
CVE-2017-9776
CPE    3
cpe:/a:freedesktop:poppler:0.55.0
cpe:/o:amazon:linux
cpe:/a:freedesktop:poppler

© SecPod Technologies