CVE-2019-5045
CVE-2019-5045 affects NitroPDF 12.12.1.522. A crafted jpeg2000 embedded in a PDF can trigger a heap corruption during parsing, due to an under- or mis-sized allocation in the siz/sizDepth handling, potentially allowing arbitrary code execution. Cisco Talos details a heap-based overflow in the pdf...