PT-2013-3395 · Poppler+1 · Poppler+1

Published

2013-04-09

Updated

2024-06-15

CVE-2013-1789

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions poppler versions prior to 0.22.1

Description The issue allows context-dependent attackers to cause a denial of service, resulting in a NULL pointer dereference and crash. This is related to the Splash::arbitraryTransformMask, Splash::blitMask, and Splash::scaleMaskYuXu functions.

Recommendations For versions prior to 0.22.1, update to version 0.22.1 or later to resolve the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2013-1789

OPENSUSE-SU-2024:10360-1

Affected Products

Suse

Poppler

PT-2013-3395 · Poppler+1 · Poppler+1

CVE-2013-1789

Related Identifiers

Affected Products

References · 28