CVE-2024-4141

2024-04-2400:00:00

ubuntu.com

xpdf type 1 font boundscheck

CVSS3

2.9

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

LOW

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L

AI Score

7.4

Confidence

Low

EPSS

Percentile

9.0%

JSON

Out-of-bounds array write in Xpdf 4.05 and earlier, triggered by an invalid
character code in a Type 1 font. The root problem was a bounds check that
was being optimized away by modern compilers.

Notes

Author	Note
mdeslaur	In trusty to bionic, xpdf is built with poppler as the backend library, so most xpdf issues don’t apply to it. In jammy and later, the xpdf package is actually xpopple, a fork that also builds against poppler.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchipe< anyUNKNOWN
ubuntu20.04noarchipe< anyUNKNOWN
ubuntu22.04noarchipe< anyUNKNOWN
ubuntu24.04noarchipe< anyUNKNOWN
ubuntu16.04noarchipe< anyUNKNOWN
ubuntu18.04noarchxpdf< anyUNKNOWN
ubuntu22.04noarchxpdf< anyUNKNOWN
ubuntu24.04noarchxpdf< anyUNKNOWN
ubuntu16.04noarchxpdf< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	ipe	< any	UNKNOWN
ubuntu	20.04	noarch	ipe	< any	UNKNOWN
ubuntu	22.04	noarch	ipe	< any	UNKNOWN
ubuntu	24.04	noarch	ipe	< any	UNKNOWN
ubuntu	16.04	noarch	ipe	< any	UNKNOWN
ubuntu	18.04	noarch	xpdf	< any	UNKNOWN
ubuntu	22.04	noarch	xpdf	< any	UNKNOWN
ubuntu	24.04	noarch	xpdf	< any	UNKNOWN
ubuntu	16.04	noarch	xpdf	< any	UNKNOWN