Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction
function in Poppler before 0.40.0 allows remote attackers to cause a denial
of service (memory corruption and crash) or possibly execute arbitrary code
via an invalid blend mode in the ExtGState dictionary in a crafted PDF
document.