PT-2019-2633 · Poppler+1 · Poppler+1
Publicado
2019-04-05
·
Atualizado
2019-09-06
·
CVE-2019-10873
CVSS v2.0
7.1
Alta
| Vetor | AV:N/AC:M/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Poppler version 0.74.0
Description
The issue is related to a NULL pointer dereference in the
SplashClip::clipAALine function at splash/SplashClip.cc. This could allow a remote attacker to cause a denial of service using a specially crafted PDF document.Recommendations
For Poppler version 0.74.0, consider disabling the
SplashClip::clipAALine function as a temporary workaround until a patch is available.Exploit
Correção
NULL Pointer Dereference
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Poppler
Ubuntu