CVE-2011-1553

CWE-399 CWE-416 — Use After Free11 documents9 sources

Severity

4.3MEDIUM

EPSS

5.0%

top 10.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Glyphandcog Xpdfreader T1lib T1lib Foolabs Xpdf

Timeline

PublishedMar 31

Latest updateMay 14

Description

Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in Xpdf before 3.02pl6, teTeX, and other products, allows remote attackers to cause a denial of service (application crash) via a PDF document containing a crafted Type 1 font that triggers an invalid memory write, a different vulnerability than CVE-2011-0764.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages4 packages

▶Debianxpdf< 3.02-9+3

▶NVDt1lib/t1lib5.1.2+23

▶NVDglyphandcog/xpdfreader3.02+20

▶NVDfoolabs/xpdf19 versions+18

Patches

Patch: www.foolabs.com ↗Patch: www.foolabs.com ↗

🔴Vulnerability Details

GHSA

GHSA-6xpf-26gh-gvp9: Use-after-free vulnerability in t1lib 5↗2022-05-14

▶

OSV

CVE-2011-1553: Use-after-free vulnerability in t1lib 5↗2011-03-31

▶

CVEList

CVE-2011-1553: Use-after-free vulnerability in t1lib 5↗2011-03-31

▶

💥Exploits & PoCs

Exploit-DB

HP OpenView Network Node Manager (OV NNM) - 'getnnmdata.exe' (MaxAge) CGI Buffer Overflow (Metasploit)↗2011-03-24

▶

📋Vendor Advisories

Ubuntu

t1lib vulnerabilities↗2012-01-19

▶

Red Hat

t1lib: Use-after-free via crafted Type 1 font↗2011-03-28

▶

Debian

CVE-2011-1553: poppler - Use-after-free vulnerability in t1lib 5.1.2 and earlier, as used in Xpdf before ...↗2011

▶

💬Community

Bugzilla

CVE-2010-2642 CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 t1lib various flaws [fedora-all]↗2012-01-10

▶

Bugzilla

CVE-2011-1553 t1lib: Use-after-free via crafted Type 1 font↗2011-04-01

▶

Bugzilla

CVE-2011-0433 CVE-2011-0764 CVE-2011-1552 CVE-2011-1553 CVE-2011-1554 t1lib various flaws [epel-5]↗2011-02-23

▶