2 matches found
poppler: NULL pointer dereference in the XRef::getEntry in XRef.cc
XRef::getEntry in XRef.cc in Poppler 0.72.0 mishandles unallocated XRef entries, which allows remote attackers to cause a denial of service NULL pointer dereference via a crafted PDF document, when XRefEntry::setFlag in XRef.h is called from Parser::makeStream in Parser.cc...
Poppler Denial of Service Vulnerability (CNVD-2018-26766)
Poppler is a C++ class library for generating PDF, the library is inherited from Xpdf PDF reader. Poppler0.72.0 version of the XRef.cc file of the XRef::getEntry there is a denial-of-service vulnerability, the vulnerability stems from the program incorrectly handles the unallocated entries, a...