CVE-2019-9588

Name of the Vulnerable Software and Affected Versions Xpdf version 4.01

Description The issue is related to an invalid memory access in the gAtomicIncrement() function, located in GMutex.h. This can be triggered by sending a crafted pdf file to the pdftops binary, for example. The impact of this issue includes causing a Denial of Service, resulting in a Segmentation fault, and potentially having other unspecified effects.

Recommendations For Xpdf version 4.01, consider restricting access to the pdftops binary until a fix is available, and avoid processing crafted pdf files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.