Back to search
CVE-2019-9959
Published: Jul 22, 2019
Modified: Aug 4, 2024
PUBLISHED
Description
The JPXStream::init function in Poppler 0.78.0 and earlier doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
https://gitlab.freedesktop.org/poppler/poppler/blob/master/NEWS
x_refsource_CONFIRM
109342
vdb-entry
x_refsource_BID
FEDORA-2019-69ec14786b
vendor-advisory
x_refsource_FEDORA
FEDORA-2019-8729e0edf5
vendor-advisory
x_refsource_FEDORA
RHSA-2019:2713
vendor-advisory
x_refsource_REDHAT
[debian-lts-announce] 20191017 [SECURITY] [DLA 1963-1] poppler security update
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20201108 [SECURITY] [DLA 2440-1] poppler security update
mailing-list
x_refsource_MLIST
[debian-lts-announce] 20220925 [SECURITY] [DLA 3120-1] poppler security update
mailing-list
x_refsource_MLIST
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now