Back to search
CVE-2018-16646
Published: Sep 6, 2018
Modified: Aug 5, 2024
PUBLISHED
Description
In Poppler 0.68.0, the Parser::getObj() function in Parser.cc may cause infinite recursion via a crafted file. A remote attacker can leverage this for a DoS attack.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://bugzilla.redhat.com/show_bug.cgi?id=1622951
x_refsource_MISC
[debian-lts-announce] 20181130 [SECURITY] [DLA 1562-2] poppler security update
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20181031 [SECURITY] [DLA 1562-1] poppler security update
mailing-list
x_refsource_MLIST
USN-3837-2
vendor-advisory
x_refsource_UBUNTU
[debian-lts-announce] 20181214 [SECURITY] [DLA 1562-3] poppler regression update
mailing-list
x_refsource_MLIST
USN-3837-1
vendor-advisory
x_refsource_UBUNTU
RHSA-2019:2022
vendor-advisory
x_refsource_REDHAT
[debian-lts-announce] 20200723 [SECURITY] [DLA 2287-1] poppler security update
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now