An exploitable heap overflow vulnerability exists in the image rendering
functionality of Poppler 0.53.0. A specifically crafted PDF can cause an
overly large number of color components during image rendering, resulting
in heap corruption. An attacker controlled PDF file can be used to trigger
this vulnerability.
Author | Note |
---|---|
mdeslaur | Ubuntu packages build with system libjpeg, not internal library |