CVE-2017-14519Infinite Loop in Poppler

CWE-835Infinite LoopCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer12 documents8 sources
Severity
7.5HIGHNVD
OSV5.5
EPSS
0.1%
top 68.52%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Freedesktop Poppler
Timeline
PublishedSep 17
Latest updateMay 13

Description

In Poppler 0.59.0, memory corruption occurs in a call to Object::streamGetChar in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp, Gfx::opShowText, and Gfx::doShowText calls (aka a Gfx.cc infinite loop).

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

Debianfreedesktop/poppler< 0.61.1-2+3
Ubuntufreedesktop/poppler< 0.24.5-2ubuntu4.6+1

🔴Vulnerability Details

4
GHSA
GHSA-h552-2xrp-fmr5: In Poppler 02022-05-13
OSV
poppler vulnerabilities2017-10-02
OSV
CVE-2017-14519: In Poppler 02017-09-17
CVEList
CVE-2017-14519: In Poppler 02017-09-17

📋Vendor Advisories

4
Ubuntu
poppler vulnerabilities2017-10-02
Red Hat
poppler: Memory corruption via Gfx.cc infinite loop2017-09-25
Red Hat
poppler: Memory corruption via Gfx.cc infinite loop2017-09-13
Debian
CVE-2017-14519: poppler - In Poppler 0.59.0, memory corruption occurs in a call to Object::streamGetChar i...2017

💬Community

3
Bugzilla
CVE-2017-14517 CVE-2017-14518 CVE-2017-14519 CVE-2017-14929 CVE-2017-14975 CVE-2017-14976 CVE-2017-14977 mingw-poppler: various flaws [fedora-all]2017-10-06
Bugzilla
CVE-2017-14517 CVE-2017-14518 CVE-2017-14519 CVE-2017-14929 CVE-2017-14975 CVE-2017-14976 CVE-2017-14977 poppler: various flaws [fedora-all]2017-10-06
Bugzilla
CVE-2017-14519 poppler: Memory corruption via Gfx.cc infinite loop2017-10-06
CVE-2017-14519 — Infinite Loop in Freedesktop Poppler | cvebase