Lucene search

K
osvGoogleOSV:CVE-2019-9878
HistoryMar 21, 2019 - 4:01 p.m.

CVE-2019-9878

2019-03-2116:01:17
Google
osv.dev
2

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

30.2%

There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a crafted pdf file to the pdftops binary. It allows an attacker to cause Denial of Service (Segmentation fault) or possibly have unspecified other impact.

CPENameOperatorVersion
pdfaltoeq0.2
pdfaltoeq0.1

AI Score

7.5

Confidence

High

EPSS

0.001

Percentile

30.2%

Related for OSV:CVE-2019-9878