Published: 30/09/2017 Updated: 03/10/2019

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 445

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

In Poppler 0.59.0, memory corruption occurs in a call to Object::dictLookup() in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp, Gfx::opFill, Gfx::doPatternFill, Gfx::doTilingPatternFill and Gfx::drawForm calls (aka a Gfx.cc infinite loop), a different vulnerability than CVE-2017-14519.

Vulnerable Product	Search on Vulmon	Subscribe to Product
freedesktop poppler 0.59.0

Several security issues were fixed in poppler ...

Debian Bug report logs - #877957 poppler: CVE-2017-14975: NULL pointer dereference in FoFiType1C::convertToType0 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, ...

Debian Bug report logs - #877239 poppler: CVE-2017-14926 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 29 Sep 2017 19:39:01 UTC Severity: important Tags: fix ...

Debian Bug report logs - #876081 poppler: CVE-2017-14520 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 18 Sep 2017 09:57:04 UTC Severity: important Tags: fix ...

Debian Bug report logs - #876385 poppler: CVE-2017-14617: Floating point exception in Streamcc ImageStream::ImageStream() Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> ...

Debian Bug report logs - #876086 poppler: CVE-2017-14519 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 18 Sep 2017 10:09:01 UTC Severity: important Tags: fix ...

Debian Bug report logs - #879066 poppler: CVE-2017-15565: NULL pointer dereference vulnerability in GfxStatecc Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, ...

Debian Bug report logs - #877954 poppler: CVE-2017-14976: heap overflow in FoFiType1C::convertToType0 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 7 Oct 201 ...

Debian Bug report logs - #876082 poppler: CVE-2017-14518 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 18 Sep 2017 09:57:07 UTC Severity: important Tags: fix ...

Debian Bug report logs - #877952 poppler: CVE-2017-14977: NULL pointer dereference in FoFiTrueType::getCFFBlock Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, ...

Debian Bug report logs - #877222 poppler: CVE-2017-14929 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 29 Sep 2017 17:27:25 UTC Severity: important Tags: fix ...

Debian Bug report logs - #876079 poppler: CVE-2017-14517 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 18 Sep 2017 09:54:02 UTC Severity: important Tags: fix ...

Debian Bug report logs - #877237 poppler: CVE-2017-14927 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 29 Sep 2017 19:24:01 UTC Severity: important Tags: fix ...

Debian Bug report logs - #877231 poppler: CVE-2017-14928 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 29 Sep 2017 18:51:05 UTC Severity: important Tags: fix ...

CWE-835 https://bugs.freedesktop.org/show_bug.cgi?id=102969 https://www.debian.org/security/2018/dsa-4097 https://usn.ubuntu.com/3440-1/https://nvd.nist.gov

Get Started

CVE-2017-14929

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect