Buffer Overflow vulnerability found in XPDF v.4.04 allows an attacker to
cause a Denial of Service viaSharedFile::readBlock located in goo/gfile.cc.
Author | Note |
---|---|
ebarretto | xpdf in Debian uses poppler, which is not affected or fixed |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-26938
gist.github.com/huanglei3/10e2a9bd07a109995b20ade306612a34
github.com/huanglei3/xpdf_heapoverflow/edit/main/Stack_backtracking_readblock
launchpad.net/bugs/cve/CVE-2023-26938
nvd.nist.gov/vuln/detail/CVE-2023-26938
security-tracker.debian.org/tracker/CVE-2023-26938