In Poppler 22.07.0, PDFDoc::savePageAs in PDFDoc.c callows malicious users to cause a denial-of-service (application crashes with SIGABRT) by crafting a PDF file in which the xref data structure is mishandled in getCatalog processing. Note that this vulnerability is caused by the incomplete patch of CVE-2018-20662.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
freedesktop poppler 22.07.0 |
||
debian debian linux 10.0 |