mirror of
https://github.com/0xMarcio/cve.git
synced 2026-04-12 00:58:33 +02:00
880 B
880 B
CVE-2017-9865
Description
The function GfxImageColorMap::getGray in GfxState.cc in Poppler 0.54.0 allows remote attackers to cause a denial of service (stack-based buffer over-read and application crash) via a crafted PDF document, related to missing color-map validation in ImageOutputDev.cc.
POC
Reference
- http://somevulnsofadlab.blogspot.com/2017/06/popplerstack-buffer-overflow-in.html
- https://bugs.freedesktop.org/show_bug.cgi?id=100774