CVE-2017-1000456
published 2018-01-02CVE-2017-1000456: freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations.
PriorityP339high8.8CVSS 3.0
AVNACLPRNUIRSUCHIHAH
EPSS
1.97%
77.9th percentile
freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | poppler | < poppler 0.61.1-2 (bookworm) | poppler 0.61.1-2 (bookworm) |
| freedesktop | poppler | — | — |
| freedesktop | poppler | >= 0 < 0.61.1-2 | 0.61.1-2 |
| freedesktop | poppler | >= 0 < 0.61.1-2 | 0.61.1-2 |
| freedesktop | poppler | >= 0 < 0.61.1-2 | 0.61.1-2 |
| freedesktop | poppler | >= 0 < 0.61.1-2 | 0.61.1-2 |
| freedesktop | poppler | >= 0 < 0.24.5-2ubuntu4.9 | 0.24.5-2ubuntu4.9 |
| freedesktop | poppler | >= 0 < 0.41.0-0ubuntu1.6 | 0.41.0-0ubuntu1.6 |
CVSS provenance
nvdv3.08.8HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv8.8HIGH
vendor_debian8.8HIGH
vendor_redhat8.8HIGH
vendor_ubuntu8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
poppler vulnerabilities
vendor_ubuntu·2018-01-08·CVSS 8.8
CVE-2017-1000456 [HIGH] poppler vulnerabilities
Title: poppler vulnerabilities
Summary: Several security issues were fixed in poppler.
It was discovered that poppler incorrectly handled certain files.
If a user or automated system were tricked into opening a crafted PDF
file, an attacker could execute arbitrary. (CVE-2017-1000456)
It was discovered that poppler incorrectly handled certain files.
If a user or automated system were tricked into opening a crafted PDF
file, an attacker could cause a denial of service. This issue only
affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 16.10. (CVE-2017-14976)
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations
vendor_redhat·2017-10-05·CVSS 8.8
CVE-2017-1000456 [HIGH] CWE-682 poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations
poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations
freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations.
Package: poppler (Red Hat Enterprise Linux 5) - Will not fix
Package: poppler (Red Hat Enterprise Linux 6) - Will not fix
Package: poppler (Red Hat Enterprise Linux 7) - Will not fix
Package: poppler (Red Hat Enterprise Linux 8) - Not affected
Debian
CVE-2017-1000456: poppler - freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addW...
vendor_debian·2017·CVSS 8.8
CVE-2017-1000456 [HIGH] CVE-2017-1000456: poppler - freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addW...
freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations.
Scope: local
bookworm: resolved (fixed in 0.61.1-2)
bullseye: resolved (fixed in 0.61.1-2)
forky: resolved (fixed in 0.61.1-2)
sid: resolved (fixed in 0.61.1-2)
trixie: resolved (fixed in 0.61.1-2)
GHSA
GHSA-54wv-g6q8-8695: freedesktop
ghsa_unreviewed·2022-05-14
CVE-2017-1000456 [HIGH] CWE-119 GHSA-54wv-g6q8-8695: freedesktop
freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations.
OSV
poppler vulnerabilities
osv·2018-01-08·CVSS 8.8
CVE-2017-1000456 [HIGH] poppler vulnerabilities
poppler vulnerabilities
It was discovered that poppler incorrectly handled certain files.
If a user or automated system were tricked into opening a crafted PDF
file, an attacker could execute arbitrary. (CVE-2017-1000456)
It was discovered that poppler incorrectly handled certain files.
If a user or automated system were tricked into opening a crafted PDF
file, an attacker could cause a denial of service. This issue only
affected Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 16.10. (CVE-2017-14976)
OSV
CVE-2017-1000456: freedesktop
osv·2018-01-02·CVSS 8.8
CVE-2017-1000456 [HIGH] CVE-2017-1000456: freedesktop
freedesktop.org libpoppler 0.60.1 fails to validate boundaries in TextPool::addWord, leading to overflow in subsequent calculations.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2017-1000456 poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations
bugzilla·2018-01-05·CVSS 8.8
CVE-2017-1000456 [HIGH] CVE-2017-1000456 poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations
CVE-2017-1000456 poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations
libpoppler in poppler version 0.60.1 is vulnerable to an invalid read and subsequent crash when parsing a specially crafted PDF. The invalid read is caused by incorrect boundary validation in TextOutputDev.cc:TextPool::addWord(), leading to overflow in subsequent calculations.
References:
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-1000456
http://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-1000456.html
http://www.cvedetails.com/cve/CVE-2017-1000456/
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-1000456
https://bugs.freedesktop.org/show_bug.cgi?id=103116
https://bugs.freedesktop.org/attachment.cgi?id=134691
Discussion:
Created p
Bugzilla
CVE-2017-1000456 poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations [fedora-all]
bugzilla·2018-01-05·CVSS 8.8
CVE-2017-1000456 [HIGH] CVE-2017-1000456 poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations [fedora-all]
CVE-2017-1000456 poppler: Invalid read in TextPool::addWord() causes crash and can lead to overflow in subsequent calculations [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit
https://bugs.freedesktop.org/show_bug.cgi?id=103116https://lists.debian.org/debian-lts-announce/2018/01/msg00001.htmlhttps://www.debian.org/security/2018/dsa-4097https://bugs.freedesktop.org/show_bug.cgi?id=103116https://lists.debian.org/debian-lts-announce/2018/01/msg00001.htmlhttps://www.debian.org/security/2018/dsa-4097
2018-01-02
Published