Integer Overflow in Poppler Affects JPXStream Function
CVE-2019-9959

6.5MEDIUM

Key Information:

Vendor

Freedesktop

Status
Poppler
Vendor
CVE Published:
22 July 2019
đź”” Create Freedesktop Vulnerability Alert

What is CVE-2019-9959?

The JPXStream::init function in Poppler versions up to 0.78.0 exhibits a critical flaw where it fails to validate the stream length, allowing for an integer overflow. This vulnerability can be exploited by attackers to allocate an excessive amount of memory on the heap, leading to potential resource exhaustion and application instability. By manipulating input values, an attacker can leverage this issue in various tools utilizing the library, such as pdftocairo, thereby posing a significant risk for systems employing an affected version of Poppler.

References

https://gitlab.freedesktop.org/poppler/poppler/blob/maste...
x_refsource_CONFIRM
http://www.securityfocus.com/bid/109342
vdb-entryx_refsource_BID
https://lists.fedoraproject.org/archives/list/package-ann...
vendor-advisoryx_refsource_FEDORA

CVSS V3.1

Score:
6.5
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.