CVE-2020-36023

CVE-2020-36023 affects freedesktop poppler 20.12.1. The issue is an infinite loop in FoFiType1C::cvtGlyph, enabling denial of service via crafted PDFs. Connected advisories confirm the flaw across multiple distros and reference fixes/patch notes: Debian LTS advisory DLA-4141 notes a security upda...

PT-2023-5943 · Poppler +10 · Poppler +10

Name of the Vulnerable Software and Affected Versions: poppler version 20.12.1 Description: The issue is related to the FoFiType1C::convertToType1 function in the poppler library for rendering PDF files. It is associated with uncontrolled recursion, which can be exploited by attackers to cause a...

Freedesktop Poppler Security Vulnerability

Freedesktop Poppler is a Freedesktop community C++ class library for generating PDFs, which is inherited from Xpdf PDF reader. A security vulnerability exists in Freedesktop Poppler version 20.12.1, which stems from the use of a crafted PDF file via the FoFiType1C::cvtGlyph method that can cause ...

Freedesktop Poppler Code Issue Vulnerability

Freedesktop Poppler is a Freedesktop community C++ class library for generating PDFs, which is inherited from Xpdf PDF reader. A security vulnerability exists in Freedesktop Poppler version 20.12.1, which stems from the use of a carefully crafted PDF file via the FoFiType1C::convertToType1 method...

Freedesktop Poppler 缓冲区错误漏洞

Poppler is based on xpdf-3.0 code base PDF rendering library. A heap buffer overflow vulnerability exists in DCTStream::getChars in Poppler 20.12.1 in DCTStream.cc, which can be exploited by an attacker to cause a heap buffer overflow via a specially crafted PDF document...