Published: 22/07/2019 Updated: 07/11/2023

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 383

Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P

The JPXStream::init function in Poppler 0.78.0 and previous versions doesn't check for negative values of stream length, leading to an Integer Overflow, thereby making it possible to allocate a large memory chunk on the heap, with a size controlled by an attacker, as demonstrated by pdftocairo.

Vulnerable Product	Search on Vulmon	Subscribe to Product
freedesktop poppler
debian debian linux 8.0
debian debian linux 9.0
debian debian linux 10.0
fedoraproject fedora 29
fedoraproject fedora 30
redhat enterprise linux 8.0
redhat enterprise linux eus 8.1
redhat enterprise linux eus 8.2
redhat enterprise linux server tus 8.2
redhat enterprise linux server aus 8.2
redhat enterprise linux server tus 8.4
redhat enterprise linux eus 8.4
redhat enterprise linux server aus 8.4
redhat enterprise linux server aus 8.6
redhat enterprise linux server tus 8.6
redhat enterprise linux eus 8.6

Debian Bug report logs - #941776 poppler: CVE-2019-9959 Package: src:poppler; Maintainer for src:poppler is Debian freedesktoporg maintainers <pkg-freedesktop-maintainers@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 5 Oct 2019 09:24:01 UTC Severity: important Tags: secu ...

Synopsis Moderate: poppler security update Type/Severity Security Advisory: Moderate Topic An update for poppler is now available for Red Hat Enterprise Linux 8Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System (CVSS) base score, wh ...

Synopsis Moderate: poppler and evince security update Type/Severity Security Advisory: Moderate Topic An update for poppler and evince is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update as having a security impact of Moderate A Common Vulnerability Scoring System ...

An issue was discovered in Poppler 0740 There is a heap-based buffer over-read in the function PSOutputDev::checkPageSlice at PSOutputDevcc (CVE-2019-10871) Poppler before 0660 has an integer overflow in Parser::makeStream in Parsercc(CVE-2018-21009) The JPXStream::init function in Poppler 0780 and earlier doesn't check for negative valu ...

The tiff_document_render() and tiff_document_get_thumbnail() functions in the TIFF document backend in GNOME Evince through 3320 did not handle errors from TIFFReadRGBAImageOriented(), leading to uninitialized memory use when processing certain TIFF image files (CVE-2019-11459) Poppler before 0660 has an integer overflow in Parser::makeStream ...

Impact: Low Public Date: 2019-07-23 CWE: CWE-190 Bugzilla: 1732340: CVE-2019-9959 poppler: Integer Over ...

CWE-190 https://gitlab.freedesktop.org/poppler/poppler/blob/master/NEWS http://www.securityfocus.com/bid/109342 https://access.redhat.com/errata/RHSA-2019:2713 https://lists.debian.org/debian-lts-announce/2019/10/msg00024.html https://lists.debian.org/debian-lts-announce/2020/11/msg00014.html https://lists.debian.org/debian-lts-announce/2022/09/msg00030.html https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/A6NX2XPMMV7O52F4NBNCHGILGJXM3OJZ/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5ZOYOZTGU4RGZW4E63OZ7LW4SMPEWGBV/https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=941776 https://nvd.nist.gov https://alas.aws.amazon.com/AL2/ALAS-2020-1481.html

CVE-2019-9959

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect