DescriptionHeap-based buffer overflow in Splash.cc in xpdf, as used in other products such as (1) poppler, (2) kdegraphics, (3) gpdf, (4) pdfkit.framework, and others, allows attackers to cause a denial of service and possibly execute arbitrary code via crafted splash images that produce certain values that exceed the width or height of the associated bitmap.
Overall state of this security issue: Resolved
This issue is currently rated as having important severity.
|National Vulnerability Database|
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA libpoppler-cpp0-21.08.0-1.3
SUSE Timeline for this CVECVE page created: Fri Jun 28 01:26:42 2013
CVE page last modified: Fri Oct 7 12:45:32 2022