Информационная безопасность
[RU] switch to English


Многочисленные уязвимости безопасности в библиотеке poppler
Опубликовано:2 апреля 2013 г.
Источник:
SecurityVulns ID:12979
Тип:библиотека
Уровень опасности:
6/10
Описание:Различные уязвимости при разборе PDF
Затронутые продукты:POPPLER : poppler 0.20
CVE:CVE-2013-1790 (poppler/Stream.cc in poppler before 0.22.1 allows context-dependent attackers to have an unspecified impact via vectors that trigger a read of uninitialized memory by the CCITTFaxStream::lookChar function.)
 CVE-2013-1789 (splash/Splash.cc in poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to the (1) Splash::arbitraryTransformMask, (2) Splash::blitMask, and (3) Splash::scaleMaskYuXu functions.)
 CVE-2013-1788 (poppler before 0.22.1 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors that trigger an "invalid memory access" in (1) splash/Splash.cc, (2) poppler/Function.cc, and (3) poppler/Stream.cc.)
Оригинальный текстdocumentUBUNTU, [USN-1785-1] poppler vulnerabilities (02.04.2013)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород