Lucene search
Ubuntu.comUB:CVE-2023-26937HistoryApr 26, 2023 - 12:00 a.m.
CVE-2023-26937
2023-04-2600:00:00
ubuntu.com
ubuntu.com
8
buffer overflow
xpdf
gstring::resize
denial of service
unix
EPSS
0.001
Percentile
25.9%
Buffer Overflow vulnerability found in XPDF v.4.04 allows an attacker to
cause a Denial of Service via GString::resize located in goo/GString.cc
Notes
| Author | Note |
|---|---|
| ebarretto | xpdf in Debian uses poppler, which is not affected or fixed |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26937
gist.github.com/huanglei3/10e2a9bd07a109995b20ade306612a34
github.com/huanglei3/xpdf_Stack-backtracking/blob/main/Stack_backtracking_gstring
launchpad.net/bugs/cve/CVE-2023-26937
nvd.nist.gov/vuln/detail/CVE-2023-26937
security-tracker.debian.org/tracker/CVE-2023-26937
Related
cvelist
cvelist
CVE-2023-26937
2023-04-26 00:00:00
nvd
nvd
CVE-2023-26937
2023-04-26 19:15:08
debiancve
debiancve
CVE-2023-26937
2023-04-26 19:15:00
cve
cve
CVE-2023-26937
2023-04-26 19:15:08
prion
prion
CVE-2023-26937
2023-04-26 19:15:00
alpinelinux
alpinelinux
CVE-2023-26937
2023-04-26 19:15:08