CVE-2017-9083

poppler 0.54.0, as used in Evince and other products, has a NULL pointer dereference in the JPXStream::readUByte function in JPXStream.cc. For example, the perf_test utility will crash (segmentation fault) when parsing an invalid PDF file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
VendorProductVersion
freedesktoppoppler
0.54.0
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
poppler
bullseye (security)
unimportant
bullseye
unimportant
bookworm
unimportant
sid
unimportant
trixie
unimportant
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
luatex
disco
dne
cosmic
dne
bionic
dne
artful
dne
zesty
dne
yakkety
dne
xenial
dne
trusty
dne
poppler
disco
Fixed 0.48.0-2ubuntu3
released
cosmic
Fixed 0.48.0-2ubuntu3
released
bionic
Fixed 0.48.0-2ubuntu3
released
artful
Fixed 0.48.0-2ubuntu3
released
zesty
Fixed 0.48.0-2ubuntu2.1
released
yakkety
Fixed 0.44.0-3ubuntu2.1
released
xenial
Fixed 0.41.0-0ubuntu1.2
released
trusty
Fixed 0.24.5-2ubuntu4.5
released
texlive-bin
disco
not-affected
cosmic
not-affected
bionic
not-affected
artful
not-affected
zesty
not-affected
yakkety
ignored
xenial
not-affected
trusty
dne
Common Weakness Enumeration
References
https://bugs.freedesktop.org/show_bug.cgi?id=101084
https://security.gentoo.org/glsa/201801-17
https://bugs.freedesktop.org/show_bug.cgi?id=101084
https://security.gentoo.org/glsa/201801-17