CVE-2019-9631
published 2019-03-08CVE-2019-9631: Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
PriorityP337critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
3.52%
87.8th percentile
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
Affected
10 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | poppler | < poppler 0.71.0-4 (bookworm) | poppler 0.71.0-4 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| freedesktop | poppler | — | — |
| freedesktop | poppler | >= 0 < 0.71.0-4 | 0.71.0-4 |
| freedesktop | poppler | >= 0 < 0.71.0-4 | 0.71.0-4 |
| freedesktop | poppler | >= 0 < 0.71.0-4 | 0.71.0-4 |
| freedesktop | poppler | >= 0 < 0.71.0-4 | 0.71.0-4 |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv9.8CRITICAL
vendor_debian9.8CRITICAL
vendor_redhat9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Ubuntu
poppler vulnerabilities
vendor_ubuntu·2019-06-27
CVE-2017-9865 poppler vulnerabilities
Title: poppler vulnerabilities
Summary: Several security issues were fixed in poppler.
It was discovered that poppler incorrectly handled certain files. If a user
or automated system were tricked into opening a crafted PDF file, an
attacker could cause a denial of service, or possibly execute arbitrary
code
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc
vendor_redhat·2019-03-07·CVSS 9.8
CVE-2019-9631 [CRITICAL] CWE-122 poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc
poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
Statement: This issue affects the versions of poppler as shipped with Red Hat Enterprise Linux 6 and 7.
Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life Cycle: https://access.redhat.com/support/policy/updates/errata/.
Package: poppler (Red Hat Enterprise Linux 5) - Not affected
Package: poppler (Red Hat Enterprise Linux 6) - Will not fi
Debian
CVE-2019-9631: poppler - Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downs...
vendor_debian·2019·CVSS 9.8
CVE-2019-9631 [CRITICAL] CVE-2019-9631: poppler - Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downs...
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
Scope: local
bookworm: resolved (fixed in 0.71.0-4)
bullseye: resolved (fixed in 0.71.0-4)
forky: resolved (fixed in 0.71.0-4)
sid: resolved (fixed in 0.71.0-4)
trixie: resolved (fixed in 0.71.0-4)
GHSA
GHSA-3q4x-phpm-jwm5: Poppler 0
ghsa_unreviewed·2022-05-13
CVE-2019-9631 [CRITICAL] CWE-125 GHSA-3q4x-phpm-jwm5: Poppler 0
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
OSV
CVE-2019-9631: Poppler 0
osv·2019-03-08·CVSS 9.8
CVE-2019-9631 [CRITICAL] CVE-2019-9631: Poppler 0
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2019-9631 poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc
bugzilla·2019-03-08·CVSS 9.8
CVE-2019-9631 [CRITICAL] CVE-2019-9631 poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc
CVE-2019-9631 poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc
Poppler 0.74.0 has a heap-based buffer over-read in the CairoRescaleBox.cc downsample_row_box_filter function.
Reference:
https://gitlab.freedesktop.org/poppler/poppler/issues/736
Discussion:
Created poppler tracking bugs for this issue:
Affects: fedora-all [bug 1686803]
---
Statement:
This issue affects the versions of poppler as shipped with Red Hat Enterprise Linux 6 and 7.
Red Hat Enterprise Linux 6 is now in Maintenance Support 2 Phase of the support and maintenance life cycle. This has been rated as having a security impact of Low, and is not currently planned to be addressed in future updates. For additional information, refer to the Red Hat Enterprise Linux Life C
Bugzilla
CVE-2019-9631 poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc [fedora-all]
bugzilla·2019-03-08·CVSS 9.8
CVE-2019-9631 [CRITICAL] CVE-2019-9631 poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc [fedora-all]
CVE-2019-9631 poppler: heap-based buffer over-read in function downsample_row_box_filter in CairoRescaleBox.cc [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected versions
of fedora-all.
For comments that are specific to the vulnerability please use bugs filed
against the "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When submitting as an update, use the fedpkg template provided in the next
comment(s). This will include the bug IDs of this tracking bug as well as
the relevant top-level CVE bugs.
Please also mention the CVE IDs being fixed in the RPM changelog and the
fedpkg commit message.
NOTE:
https://access.redhat.com/errata/RHSA-2019:2022https://access.redhat.com/errata/RHSA-2019:2713https://gitlab.freedesktop.org/poppler/poppler/issues/736https://lists.debian.org/debian-lts-announce/2019/04/msg00011.htmlhttps://lists.debian.org/debian-lts-announce/2020/07/msg00018.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6OSCOYM3AMFFBJWSBWY6VJVLNE5JD7YS/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JQ6RABASMSIMMWMDZTP6ZWUWZPTBSVB5/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWP5XSUG6GNRI75NYKF53KIB2CZY6QQ6/https://usn.ubuntu.com/4042-1/https://access.redhat.com/errata/RHSA-2019:2022https://access.redhat.com/errata/RHSA-2019:2713https://gitlab.freedesktop.org/poppler/poppler/issues/736https://lists.debian.org/debian-lts-announce/2019/04/msg00011.htmlhttps://lists.debian.org/debian-lts-announce/2020/07/msg00018.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6OSCOYM3AMFFBJWSBWY6VJVLNE5JD7YS/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/JQ6RABASMSIMMWMDZTP6ZWUWZPTBSVB5/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWP5XSUG6GNRI75NYKF53KIB2CZY6QQ6/https://usn.ubuntu.com/4042-1/
2019-03-08
Published