CVE-2018-18650

Name of the Vulnerable Software and Affected Versions Xpdf version 4.00

Description An issue in Xpdf allows attackers to launch a denial of service via a crafted /Size value in a pdf file. This is mainly caused by the program attempting a malloc operation for a large amount of memory, resulting in an integer overflow.

Recommendations For Xpdf version 4.00, consider updating to a newer version that addresses this issue, as the current version is prone to denial of service attacks due to integer overflow. At the moment, there is no information about a newer version that contains a fix for this vulnerability.