CVE-2022-38171
published 2022-08-22CVE-2022-38171: Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially…
PriorityP336high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
0.31%
23.1th percentile
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2021-30860 (Apple CoreGraphics).
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | poppler | < poppler 22.08.0-2.1 (bookworm) | poppler 22.08.0-2.1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| freedesktop | poppler | < 22.09.0 | 22.09.0 |
| freedesktop | poppler | <= 22.08.0 | — |
| freedesktop | poppler | >= 0 < 20.09.0-3.1+deb11u1 | 20.09.0-3.1+deb11u1 |
| freedesktop | poppler | >= 0 < 22.08.0-2.1 | 22.08.0-2.1 |
| freedesktop | poppler | >= 0 < 22.08.0-2.1 | 22.08.0-2.1 |
| freedesktop | poppler | >= 0 < 22.08.0-2.1 | 22.08.0-2.1 |
| msrc | microsoft_visual_studio_2022_version_17.2 | — | — |
| msrc | microsoft_visual_studio_2022_version_17.4 | — | — |
| msrc | microsoft_visual_studio_2022_version_17.6 | — | — |
| msrc | microsoft_visual_studio_2022_version_17.7 | — | — |
| msrc | net_7.0 | — | — |
| msrc | powershell_7.3 | — | — |
| msrc | windows_11_version_21h2_for_arm64-based_systems | — | — |
| msrc | windows_11_version_21h2_for_x64-based_systems | — | — |
| msrc | windows_11_version_22h2_for_arm64-based_systems | — | — |
| msrc | windows_11_version_22h2_for_x64-based_systems | — | — |
| msrc | windows_server_2022 | — | — |
| xpdfreader | xpdf | — | — |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
vendor_msrc7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5557-33mq-5995: Poppler prior to and including 22
ghsa_unreviewed·2022-08-31·CVSS 7.8
CVE-2022-38784 [HIGH] CWE-190 GHSA-5557-33mq-5995: Poppler prior to and including 22
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
OSV
CVE-2022-38784: Poppler prior to and including 22
osv·2022-08-30·CVSS 7.8
CVE-2022-38784 [HIGH] CVE-2022-38784: Poppler prior to and including 22
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
GHSA
GHSA-wxgh-95h6-c68v: Xpdf prior to version 4
ghsa_unreviewed·2022-08-23·CVSS 7.8
CVE-2022-38171 [HIGH] CWE-190 GHSA-wxgh-95h6-c68v: Xpdf prior to version 4
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readSymbolDictSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2021-30860 (Apple CoreGraphics).
OSV
CVE-2022-38171: Xpdf prior to version 4
osv·2022-08-22·CVSS 7.8
CVE-2022-38171 [HIGH] CVE-2022-38171: Xpdf prior to version 4
Xpdf prior to version 4.04 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIG2Stream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2021-30860 (Apple CoreGraphics).
Microsoft
Microsoft QUIC Denial of Service Vulnerability
vendor_msrc·2023-10-10·CVSS 7.5
CVE-2023-38171 [HIGH] CWE-476 Microsoft QUIC Denial of Service Vulnerability
Microsoft QUIC Denial of Service Vulnerability
FAQ: Where can I find more information?
Please see the GitHub Advisory relating to this vulnerability here: https://github.com/microsoft/msquic/security/advisories/GHSA-xh5m-8qqp-c5x7#event-111621
Microsoft QUIC: Microsoft QUIC
Microsoft: Microsoft
Customer Action Required: Yes
Impact: Denial of Service
Exploit Status: Publicly Disclosed:No;Exploited:No;Latest Software Release:Exploitation More Likely;DOS:N/A
Remediation: Release Notes
Reference: https://my.visualstudio.com/Downloads?q=Visual Studio 2022 version 17.2
Reference: https://docs.microsoft.com/en-us/visualstudio/releases/2022/release-notes
Reference: https://my.visualstudio.com/Downloads?q=Visual Studio 2022 version 17.4
Reference: https://learn.microsoft.com/en-us/visual
Red Hat
poppler: integer overflow in JBIG2 decoder using malformed files
vendor_redhat·2022-08-30·CVSS 7.8
CVE-2022-38784 [HIGH] CWE-190 poppler: integer overflow in JBIG2 decoder using malformed files
poppler: integer overflow in JBIG2 decoder using malformed files
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
An integer overflow issue was discovered in Popplers' JBIG2 decoder in the JBIG2Stream::readTextRegionSeg() function in JBIGStream.cc file. This flaw allows an attacker to trick a user into opening a malformed PDF file or JBIG2 image in the application, triggering an integer overflow, which could result in a crash or may lead to the execution of arbitrary code on the target system.
Statement: This vu
Debian
CVE-2022-38784: poppler - Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2...
vendor_debian·2022·CVSS 7.8
CVE-2022-38784 [HIGH] CVE-2022-38784: poppler - Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2...
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
Scope: local
bookworm: resolved (fixed in 22.08.0-2.1)
bullseye: resolved (fixed in 20.09.0-3.1+deb11u1)
forky: resolved (fixed in 22.08.0-2.1)
sid: resolved (fixed in 22.08.0-2.1)
trixie: resolved (fixed in 22.08.0-2.1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.openwall.com/lists/oss-security/2022/09/02/11http://www.xpdfreader.com/security-fixes.htmlhttps://dl.xpdfreader.com/xpdf-4.04.tar.gzhttps://github.com/jeffssh/CVE-2021-30860https://github.com/zmanion/Vulnerabilities/blob/main/CVE-2022-38171.mdhttps://googleprojectzero.blogspot.com/2021/12/a-deep-dive-into-nso-zero-click.htmlhttps://www.cve.org/CVERecord?id=CVE-2021-30860http://www.openwall.com/lists/oss-security/2022/09/02/11http://www.xpdfreader.com/security-fixes.htmlhttps://dl.xpdfreader.com/xpdf-4.04.tar.gzhttps://github.com/jeffssh/CVE-2021-30860https://github.com/zmanion/Vulnerabilities/blob/main/CVE-2022-38171.mdhttps://googleprojectzero.blogspot.com/2021/12/a-deep-dive-into-nso-zero-click.htmlhttps://www.cve.org/CVERecord?id=CVE-2021-30860
2022-08-22
Published