Freedesktop Poppler 安全漏洞

Freedesktop Poppler is a Freedesktop community C++ class library for generating PDFs, which is inherited from Xpdf PDF reader. A security vulnerability exists in Freedesktop Poppler version 22.08.0, which stems from a lack of stream checking before saving an embedded file in PDFDoc::replacePageDi...

PT-2023-5245 · Poppler +5 · Poppler +5

Name of the Vulnerable Software and Affected Versions: Poppler version 22.08.0 Description: The issue is related to a reachable assertion in Object.h, which can lead to denial of service. This occurs because the PDFDoc::replacePageDict function in PDFDoc.cc lacks a stream check before saving an...