Lucene search

MitreCVELIST:CVE-2023-34872

HistoryJul 31, 2023 - 12:00 a.m.

CVE-2023-34872

2023-07-3100:00:00

mitre

www.cve.org

outline.cc

poppler

23.06.0

vulnerability

denial of service

pdf file

outlineitem::open

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

53.3%

JSON

A vulnerability in Outline.cc for Poppler prior to 23.06.0 allows a remote attacker to cause a Denial of Service (DoS) (crash) via a crafted PDF file in OutlineItem::open.

References

gitlab.freedesktop.org/poppler/poppler/-/commit/591235c8b6c65a2eee88991b9ae73490fd9afdfe

gitlab.freedesktop.org/poppler/poppler/-/issues/1399

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3XXL3L6RJOTLGCN7GLH2OLLNF4FJ4T7I/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JQ3NYJ43U2MA7COKGMJDARZUAAOP45D4/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SFBT75QHBWNMSDAHSXZQ2I3PBJWID36K/

lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W3H3GOWFE3C7543GMEN7LY4GWMWJ7D2G/