5.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
47.8%
A stack-consumption vulnerability was found in libqpdf in QPDF 6.0.0, which allows attackers to cause a denial of service via a crafted file, related to the QPDF::resolveObjectsInStream function in QPDF.cc, aka an “infinite loop.”
somevulnsofadlab.blogspot.jp/2017/07/qpdfan-infinite-loop-in-libqpdf_26.html
github.com/qpdf/qpdf/issues/120
usn.ubuntu.com/3638-1/