An exploitable heap overflow vulnerability exists in the image rendering functionality of Poppler 0.53.0. A specifically crafted PDF can cause an overly large number of color components during image rendering, resulting in heap corruption. An attacker controlled PDF file can be used to trigger this vulnerability.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: talos
Published: 2017-07-12T17:00:00Z
Updated: 2024-09-17T04:29:31.861Z
Reserved: 2016-12-01T00:00:00
Link: CVE-2017-2818
Vulnrichment
No data.
NVD
Status : Modified
Published: 2017-07-12T17:29:00.497
Modified: 2024-11-21T03:24:12.763
Link: CVE-2017-2818
Redhat