CVE-2021-36978 — Out-of-bounds Write in Project Qpdf

CWE-787 — Out-of-bounds Write CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer11 documents8 sources

Severity

5.5MEDIUMNVD

OSV3.3

EPSS

0.1%

top 76.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Qpdf Project Qpdf

Timeline

PublishedJul 20

Latest updateMay 24

Description

QPDF 9.x through 9.1.1 and 10.x through 10.0.4 has a heap-based buffer overflow in Pl_ASCII85Decoder::write (called from Pl_AES_PDF::flush and Pl_AES_PDF::finish) when a certain downstream write fails.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages3 packages

▶Debianqpdf_project/qpdf< 10.1.0-1+3

▶Ubuntuqpdf_project/qpdf< 8.0.2-3ubuntu0.1+2

▶NVDqpdf_project/qpdf9.0.0 — 9.1.1+1

Patches

Patch: bugs.chromium.org ↗Patch: github.com ↗Patch: bugs.chromium.org ↗

🔴Vulnerability Details

GHSA

GHSA-vgrr-57vg-f5rq: QPDF 9↗2022-05-24

▶

OSV

qpdf vulnerabilities↗2021-08-02

▶

OSV

qpdf vulnerabilities↗2021-07-29

▶

CVEList

CVE-2021-36978: QPDF 9↗2021-07-20

▶

OSV

CVE-2021-36978: QPDF 9↗2021-07-20

▶

💥Exploits & PoCs

Nuclei

WordPress JH 404 Logger <=1.1 - Cross-Site Scripting

▶

📋Vendor Advisories

Ubuntu

QPDF vulnerabilities↗2021-08-02

▶

Ubuntu

QPDF vulnerabilities↗2021-07-29

▶

Red Hat

qpdf: heap-based buffer overflow in Pl_ASCII85Decoder::write() when a certain downstream write fails↗2021-01-04

▶

Debian

CVE-2021-36978: qpdf - QPDF 9.x through 9.1.1 and 10.x through 10.0.4 has a heap-based buffer overflow ...↗2021

▶