Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2017-2820HistoryJul 12, 2017 - 5:29 p.m.
CVE-2017-2820
2017-07-1217:29:00
Debian Security Bug Tracker
security-tracker.debian.org
7
0.005 Low
EPSS
Percentile
77.1%
An exploitable integer overflow vulnerability exists in the JPEG 2000 image parsing functionality of freedesktop.org Poppler 0.53.0. A specially crafted PDF file can lead to an integer overflow causing out of bounds memory overwrite on the heap resulting in potential arbitrary code execution. To trigger this vulnerability, a victim must open the malicious PDF in an application using this library.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | poppler | <= 22.12.0-2 | poppler_22.12.0-2_all.deb |
| Debian | 11 | all | poppler | <= 20.09.0-3.1+deb11u1 | poppler_20.09.0-3.1+deb11u1_all.deb |
| Debian | 10 | all | poppler | <= 0.71.0-5 | poppler_0.71.0-5_all.deb |
| Debian | 999 | all | poppler | <= 24.02.0-5 | poppler_24.02.0-5_all.deb |
| Debian | 13 | all | poppler | <= 24.02.0-5 | poppler_24.02.0-5_all.deb |
Related
cve
cve
CVE-2017-2820
2017-07-12 17:29:00
seebug
seebug
redhatcve
redhatcve
CVE-2017-2820
2017-07-12 12:49:55
talos
talos
Poppler PDF library JPEG 2000 levels Code Execution Vulnerability
2017-07-07 00:00:00
prion
prion
Integer overflow
2017-07-12 17:29:00
ubuntucve
ubuntucve
CVE-2017-2820
2017-07-07 00:00:00
veracode
veracode
Integer Overflow
2018-07-27 07:38:08
cvelist
cvelist
CVE-2017-2820
2017-07-11 00:00:00
talosblog
talosblog
nessus
nessus
GLSA-201801-17 : Poppler: Multiple vulnerabilities
2018-01-18 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : poppler vulnerabilities (USN-3350-1)
2017-07-10 00:00:00
gentoo
gentoo
Poppler: Multiple vulnerabilities
2018-01-17 00:00:00
ubuntu
ubuntu
poppler vulnerabilities
2017-07-07 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3350-1)
2017-07-14 00:00:00