Xpdf · Xpdf · CVE-2024-4141
**Name of the Vulnerable Software and Affected Versions**
Xpdf versions 4.05 and earlier
**Description**
The issue is an out-of-bounds array write triggered by an invalid character code in a Type 1 font. The root problem was a bounds check that was being optimized away by modern compilers.
**Recommendations**
For Xpdf versions 4.05 and earlier, consider updating to a newer version that addresses the issue, as the current version has a bounds check that is being optimized away by modern compilers, leading to the out-of-bounds array write.
At the moment, there is no information about a newer version that contains a fix for this vulnerability.