Back to search
CVE-2009-0756
Published: Mar 3, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The JBIG2Stream::readSymbolDictSeg function in Poppler before 0.10.4 allows remote attackers to cause a denial of service (crash) via a PDF file that triggers a parsing error, which is not properly handled by JBIG2SymbolDict::~JBIG2SymbolDict and triggers an invalid memory dereference.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
33749
vdb-entry
x_refsource_BID
33853
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20090219 Re: CVE Request: Poppler -Two Denial of Service Vulnerabilities
mailing-list
x_refsource_MLIST
[oss-security] 20090213 CVE Request: Poppler -Two Denial of Service Vulnerabilities
mailing-list
x_refsource_MLIST
http://wiki.rpath.com/Advisories:rPSA-2009-0059
x_refsource_CONFIRM
35685
third-party-advisory
x_refsource_SECUNIA
20090417 rPSA-2009-0059-1 poppler
mailing-list
x_refsource_BUGTRAQ
[poppler] 20090123 poppler/JBIG2Stream.cc
mailing-list
x_refsource_MLIST
SUSE-SR:2009:012
vendor-advisory
x_refsource_SUSE
http://bugs.freedesktop.org/show_bug.cgi?id=19702
x_refsource_CONFIRM
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now