CVE-2019-12493 — Out-of-bounds Read in Xpdfreader

CWE-125 — Out-of-bounds Read8 documents6 sources

Severity

7.1HIGHNVD

EPSS

0.3%

top 47.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Freedesktop Poppler Glyphandcog Xpdfreader

Timeline

PublishedMay 31

Latest updateMay 24

Description

A stack-based buffer over-read exists in PostScriptFunction::transform in Function.cc in Xpdf 4.01.01 because GfxSeparationColorSpace and GfxDeviceNColorSpace mishandle tint transform functions. It can, for example, be triggered by sending a crafted PDF document to the pdftops tool. It might allow an attacker to cause Denial of Service or leak memory data.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages2 packages

▶NVDglyphandcog/xpdfreader4.01.01

▶Debianfreedesktop/poppler< 0.44.0-2+3

🔴Vulnerability Details

GHSA

GHSA-2856-2658-h48j: A stack-based buffer over-read exists in PostScriptFunction::transform in Function↗2022-05-24

▶

OSV

CVE-2019-12493: A stack-based buffer over-read exists in PostScriptFunction::transform in Function↗2019-05-31

▶

CVEList

CVE-2019-12493: A stack-based buffer over-read exists in PostScriptFunction::transform in Function↗2019-05-31

▶

📋Vendor Advisories

Debian

CVE-2019-12493: poppler - A stack-based buffer over-read exists in PostScriptFunction::transform in Functi...↗2019

▶

💬Community

Bugzilla

CVE-2019-12493 xpdf: stack-based buffer over-read in function PostScriptFunction::transform in Function.cc↗2019-06-04

▶

Bugzilla

CVE-2019-12493 xpdf: stack-based buffer over-read in function PostScriptFunction::transform in Function.cc [fedora-all]↗2019-06-04

▶

Bugzilla

CVE-2019-12493 xpdf: stack-based buffer over-read in function PostScriptFunction::transform in Function.cc [epel-all]↗2019-06-04

▶