poppler since version 0.17.3 has been vulnerable to NULL pointer dereference in pdfunite triggered by specially crafted documents.
[
{
"product": "poppler",
"vendor": "Poppler",
"versions": [
{
"status": "affected",
"version": "since 0.17.3"
}
]
}
]