CVE-2019-9877
EUVD-2019-1923321.03.2019, 16:01
There is an invalid memory access vulnerability in the function TextPage::findGaps() located at TextOutputDev.c in Xpdf 4.01, which can (for example) be triggered by sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| xpdfreader | xpdf | 4.0.1 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ipe |
| ||||||||||||||||||||||||||
| libextractor |
| ||||||||||||||||||||||||||
| poppler |
| ||||||||||||||||||||||||||
| xpdf |
|
Common Weakness Enumeration