Buffer Overflow vulnerability found in XPDF v.4.04 allows an attacker to
cause a Denial of Service via GString::resize located in goo/GString.cc
Author | Note |
---|---|
ebarretto | xpdf in Debian uses poppler, which is not affected or fixed |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26937
gist.github.com/huanglei3/10e2a9bd07a109995b20ade306612a34
github.com/huanglei3/xpdf_Stack-backtracking/blob/main/Stack_backtracking_gstring
launchpad.net/bugs/cve/CVE-2023-26937
nvd.nist.gov/vuln/detail/CVE-2023-26937
security-tracker.debian.org/tracker/CVE-2023-26937