CVE-2017-14929Infinite Loop in Poppler

CWE-835Infinite LoopCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer11 documents8 sources
Severity
7.5HIGHNVD
OSV7.8
EPSS
0.2%
top 58.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Freedesktop Poppler
Timeline
PublishedSep 30
Latest updateMay 13

Description

In Poppler 0.59.0, memory corruption occurs in a call to Object::dictLookup() in Object.h after a repeating series of Gfx::display, Gfx::go, Gfx::execOp, Gfx::opFill, Gfx::doPatternFill, Gfx::doTilingPatternFill and Gfx::drawForm calls (aka a Gfx.cc infinite loop), a different vulnerability than CVE-2017-14519.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

Debianfreedesktop/poppler< 0.61.1-2+3
Ubuntufreedesktop/poppler< 0.24.5-2ubuntu4.7+1

🔴Vulnerability Details

4
GHSA
GHSA-rhh3-rx8x-hwmm: In Poppler 02022-05-13
OSV
poppler vulnerabilities2017-10-06
OSV
CVE-2017-14929: In Poppler 02017-09-30
CVEList
CVE-2017-14929: In Poppler 02017-09-29

📋Vendor Advisories

3
Ubuntu
poppler vulnerabilities2017-10-06
Red Hat
poppler: Memory corruption via Gfx.cc infinite loop2017-09-25
Debian
CVE-2017-14929: poppler - In Poppler 0.59.0, memory corruption occurs in a call to Object::dictLookup() in...2017

💬Community

3
Bugzilla
CVE-2017-14517 CVE-2017-14518 CVE-2017-14519 CVE-2017-14929 CVE-2017-14975 CVE-2017-14976 CVE-2017-14977 mingw-poppler: various flaws [fedora-all]2017-10-06
Bugzilla
CVE-2017-14929 poppler: Memory corruption via Gfx.cc infinite loop2017-10-06
Bugzilla
CVE-2017-14517 CVE-2017-14518 CVE-2017-14519 CVE-2017-14929 CVE-2017-14975 CVE-2017-14976 CVE-2017-14977 poppler: various flaws [fedora-all]2017-10-06
CVE-2017-14929 — Infinite Loop in Freedesktop Poppler | cvebase