CVE-2022-38784
published 2022-08-30CVE-2022-38784: Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a…
PriorityP338high7.8CVSS 3.1
AVLACLPRNUIRSUCHIHAH
EPSS
0.57%
43.0th percentile
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
Affected
11 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| debian | debian_linux | — | — |
| debian | debian_linux | — | — |
| debian | poppler | < poppler 22.08.0-2.1 (bookworm) | poppler 22.08.0-2.1 (bookworm) |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| fedoraproject | fedora | — | — |
| freedesktop | poppler | <= 22.08.0 | — |
| freedesktop | poppler | >= 0 < 20.09.0-3.1+deb11u1 | 20.09.0-3.1+deb11u1 |
| freedesktop | poppler | >= 0 < 22.08.0-2.1 | 22.08.0-2.1 |
| freedesktop | poppler | >= 0 < 22.08.0-2.1 | 22.08.0-2.1 |
| freedesktop | poppler | >= 0 < 22.08.0-2.1 | 22.08.0-2.1 |
CVSS provenance
nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
osv7.8HIGH
vendor_debian7.8HIGH
vendor_redhat7.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-5557-33mq-5995: Poppler prior to and including 22
ghsa_unreviewed·2022-08-31·CVSS 7.8
CVE-2022-38784 [HIGH] CWE-190 GHSA-5557-33mq-5995: Poppler prior to and including 22
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
OSV
CVE-2022-38784: Poppler prior to and including 22
osv·2022-08-30·CVSS 7.8
CVE-2022-38784 [HIGH] CVE-2022-38784: Poppler prior to and including 22
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
Ubuntu
poppler vulnerability
vendor_ubuntu·2022-09-12
CVE-2022-38784 poppler vulnerability
Title: poppler vulnerability
Summary: poppler could be made to crash or execute arbitrary code if
received a specially crafted PDF.
It was discovered that poppler incorrectly handled certain
PDF. An attacker could possibly use this issue to cause a
denial of service or execute arbitrary code.
Instructions: In general, a standard system update will make all the necessary changes.
Red Hat
poppler: integer overflow in JBIG2 decoder using malformed files
vendor_redhat·2022-08-30·CVSS 7.8
CVE-2022-38784 [HIGH] CWE-190 poppler: integer overflow in JBIG2 decoder using malformed files
poppler: integer overflow in JBIG2 decoder using malformed files
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
An integer overflow issue was discovered in Popplers' JBIG2 decoder in the JBIG2Stream::readTextRegionSeg() function in JBIGStream.cc file. This flaw allows an attacker to trick a user into opening a malformed PDF file or JBIG2 image in the application, triggering an integer overflow, which could result in a crash or may lead to the execution of arbitrary code on the target system.
Statement: This vu
Debian
CVE-2022-38784: poppler - Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2...
vendor_debian·2022·CVSS 7.8
CVE-2022-38784 [HIGH] CVE-2022-38784: poppler - Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2...
Poppler prior to and including 22.08.0 contains an integer overflow in the JBIG2 decoder (JBIG2Stream::readTextRegionSeg() in JBIGStream.cc). Processing a specially crafted PDF file or JBIG2 image could lead to a crash or the execution of arbitrary code. This is similar to the vulnerability described by CVE-2022-38171 in Xpdf.
Scope: local
bookworm: resolved (fixed in 22.08.0-2.1)
bullseye: resolved (fixed in 20.09.0-3.1+deb11u1)
forky: resolved (fixed in 22.08.0-2.1)
sid: resolved (fixed in 22.08.0-2.1)
trixie: resolved (fixed in 22.08.0-2.1)
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.openwall.com/lists/oss-security/2022/09/02/11https://github.com/jeffssh/CVE-2021-30860https://github.com/zmanion/Vulnerabilities/blob/main/CVE-2022-38171.mdhttps://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1261/diffs?commit_id=27354e9d9696ee2bc063910a6c9a6b27c5184a52https://lists.debian.org/debian-lts-announce/2022/09/msg00030.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BGY72LBJMFAKQWC2XH4MRPIGPQLXTFL6/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E5Z2677EQUWVHJLGSH5DQX53EK6MY2M2/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J546EJUKUOPWA3JSLP7DYNBAU3YGNCCW/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NLKN3HJKZSGEEKOF57DM7Q3IB74HP5VW/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TQAO6O2XHPQHNW2MWOCJJ4C3YWS2VV4K/https://poppler.freedesktop.org/releases.htmlhttps://security.gentoo.org/glsa/202209-21https://www.cve.org/CVERecord?id=CVE-2022-38171https://www.debian.org/security/2022/dsa-5224http://www.openwall.com/lists/oss-security/2022/09/02/11https://github.com/jeffssh/CVE-2021-30860https://github.com/zmanion/Vulnerabilities/blob/main/CVE-2022-38171.mdhttps://gitlab.freedesktop.org/poppler/poppler/-/merge_requests/1261/diffs?commit_id=27354e9d9696ee2bc063910a6c9a6b27c5184a52https://lists.debian.org/debian-lts-announce/2022/09/msg00030.htmlhttps://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BGY72LBJMFAKQWC2XH4MRPIGPQLXTFL6/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/E5Z2677EQUWVHJLGSH5DQX53EK6MY2M2/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/J546EJUKUOPWA3JSLP7DYNBAU3YGNCCW/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NLKN3HJKZSGEEKOF57DM7Q3IB74HP5VW/https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/TQAO6O2XHPQHNW2MWOCJJ4C3YWS2VV4K/https://poppler.freedesktop.org/releases.htmlhttps://security.gentoo.org/glsa/202209-21https://www.cve.org/CVERecord?id=CVE-2022-38171https://www.debian.org/security/2022/dsa-5224
2022-08-30
Published