cbcvebase.
CVE-2022-38334
published 2022-09-15

CVE-2022-38334: XPDF v4.04 and earlier was discovered to contain a stack overflow via the function Catalog::countPageTree() at Catalog.cc.

medium5.5CVSS 3.1
AVLACLPRNUIRSUCNINAH
XPDF v4.04 and earlier was discovered to contain a stack overflow via the function Catalog::countPageTree() at Catalog.cc.

Affected

2 ranges
VendorProductVersion rangeFixed in
debianxpdf
xpdfreaderxpdf<= 4.04

CVSS provenance

nvdv3.15.5MEDIUMCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
osv5.5MEDIUM