CVE-2019-9878
EUVD-2019-1923421.03.2019, 16:01
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| pdfalto_project | pdfalto | 0.2 |
| xpdfreader | xpdf | 4.0.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ipe |
| ||||||||||||||||||||||||||
| libextractor |
| ||||||||||||||||||||||||||
| poppler |
| ||||||||||||||||||||||||||
| xpdf |
|
Common Weakness Enumeration
References