Vuln: Poppler CVE-2019-9959 Integer Overflow Vulnerability
Poppler is prone to an integer-overflow vulnerability because it fails to adequately bounds-check user-supplied data before copying it to an insufficiently sized memory buffer.
Attackers can exploit this issue to cause denial-of-service conditions.
Poppler version 0.78.0 and prior are vulnerable.
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: vuldb@securityfocus.com.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Bugtraq ID: | 109342 |
Class: | Boundary Condition Error |
CVE: | CVE-2019-9959 |
Remote: | No |
Local: | Yes |
Published: | Jul 23 2019 12:00AM |
Updated: | Jul 23 2019 12:00AM |
Credit: | The vendor reported this issue. |
Vulnerable: | freedesktop Poppler 0.78 freedesktop Poppler 0.77 freedesktop Poppler 0.76.1 freedesktop Poppler 0.74 freedesktop Poppler 0.73 freedesktop Poppler 0.72 freedesktop Poppler 0.70 freedesktop Poppler 0.25.2 freedesktop Poppler 0.25.1 freedesktop Poppler 0.25 freedesktop Poppler 0.24.5 freedesktop Poppler 0.24.4 freedesktop Poppler 0.24.3 freedesktop Poppler 0.24.1 freedesktop Poppler 0.24 freedesktop Poppler 0.23.4 freedesktop Poppler 0.23.3 freedesktop Poppler 0.23.2 freedesktop Poppler 0.23.1 freedesktop Poppler 0.23 freedesktop Poppler 0.22.3 freedesktop Poppler 0.22.2 freedesktop Poppler 0.21.2 freedesktop Poppler 0.21.1 freedesktop Poppler 0.21 freedesktop Poppler 0.20.5 freedesktop Poppler 0.20.4 freedesktop Poppler 0.20.3 freedesktop Poppler 0.20.2 freedesktop Poppler 0.20.1 freedesktop Poppler 0.20 freedesktop Poppler 0.19.4 freedesktop Poppler 0.19.3 freedesktop Poppler 0.19.2 freedesktop Poppler 0.19 freedesktop Poppler 0.18.4 freedesktop Poppler 0.18.3 freedesktop Poppler 0.18.2 freedesktop Poppler 0.18.1 freedesktop Poppler 0.18 freedesktop Poppler 0.17.4 freedesktop Poppler 0.16.2 freedesktop Poppler 0.16.1 freedesktop Poppler 0.16 freedesktop Poppler 0.15.2 freedesktop Poppler 0.15.1 freedesktop Poppler 0.15 freedesktop Poppler 0.14.5 freedesktop Poppler 0.14.4 freedesktop Poppler 0.14.2 freedesktop Poppler 0.14 freedesktop Poppler 0.13.4 freedesktop Poppler 0.13 freedesktop Poppler 0.12.4 freedesktop Poppler 0.12.3 freedesktop Poppler 0.12.2 freedesktop Poppler 0.12.1 freedesktop Poppler 0.12 freedesktop Poppler 0.11.3 freedesktop Poppler 0.10.7 freedesktop Poppler 0.10.4 freedesktop Poppler 0.8.6 freedesktop Poppler 0.8.5 freedesktop Poppler 0.8.3 freedesktop Poppler 0.6.4 freedesktop Poppler 0.5.9 freedesktop Poppler 0.4.4 freedesktop Poppler 0.9.3 freedesktop Poppler 0.9.2 freedesktop Poppler 0.9.1 freedesktop Poppler 0.9.0 freedesktop Poppler 0.8.7 freedesktop Poppler 0.8.4 freedesktop Poppler 0.8.2 freedesktop Poppler 0.8.1 freedesktop Poppler 0.8.0 freedesktop Poppler 0.7.3 freedesktop Poppler 0.7.2 freedesktop Poppler 0.7.1 freedesktop Poppler 0.7.0 freedesktop Poppler 0.6.3 freedesktop Poppler 0.6.2 freedesktop Poppler 0.6.1 freedesktop Poppler 0.6.0 freedesktop Poppler 0.59.0 freedesktop Poppler 0.5.91 freedesktop Poppler 0.5.90 freedesktop Poppler 0.5.4 freedesktop Poppler 0.5.3 freedesktop Poppler 0.5.2 freedesktop Poppler 0.5.1 freedesktop Poppler 0.5.0 freedesktop Poppler 0.4.3 freedesktop Poppler 0.4.2 freedesktop Poppler 0.4.1 freedesktop Poppler 0.4.0 freedesktop Poppler 0.3.3 freedesktop Poppler 0.3.2 freedesktop Poppler 0.3.1 freedesktop Poppler 0.3.0 freedesktop Poppler 0.25.3 freedesktop Poppler 0.24.2 freedesktop Poppler 0.22.4 freedesktop Poppler 0.22.1 freedesktop Poppler 0.22.0 freedesktop Poppler 0.21.4 freedesktop Poppler 0.21.3 freedesktop Poppler 0.2.0 freedesktop Poppler 0.19.1 freedesktop Poppler 0.17.3 freedesktop Poppler 0.17.2 freedesktop Poppler 0.17.1 freedesktop Poppler 0.17.0 freedesktop Poppler 0.16.7 freedesktop Poppler 0.16.6 freedesktop Poppler 0.16.5 freedesktop Poppler 0.16.4 freedesktop Poppler 0.16.3 freedesktop Poppler 0.15.3 freedesktop Poppler 0.14.3 freedesktop Poppler 0.14.1 freedesktop Poppler 0.13.3 freedesktop Poppler 0.13.2 freedesktop Poppler 0.13.1 freedesktop Poppler 0.11.2 freedesktop Poppler 0.11.1 freedesktop Poppler 0.11.0 freedesktop Poppler 0.10.6 freedesktop Poppler 0.10.5 freedesktop Poppler 0.10.3 freedesktop Poppler 0.10.2 freedesktop Poppler 0.10.1 freedesktop Poppler 0.10.0 freedesktop Poppler 0.1.2 freedesktop Poppler 0.1.1 freedesktop Poppler 0.1 |
Not Vulnerable: |
from SecurityFocus Vulnerabilities https://ift.tt/311UqBl